topic Physical Security Assessments in Governance, Risk, Compliance https://community.isc2.org/t5/Governance-Risk-Compliance/Physical-Security-Assessments/m-p/43167#M282 <P>Good Afternoon,</P><P>&nbsp;</P><P>We are reviewing our organization's overall physical security (e.g. policies, procedures, org structure, technology, and other controls) for potential improvement, and we have a few questions that we would like to pose to the group:</P><P>&nbsp;</P><OL><LI>Has your organization had a physical security assessment by a third party?</LI><LI>If so (and if you believe that assessment was beneficial), would you mind sharing your general recommendation/leading practice implementations and contact information for the third party assessor?</LI><LI>Whether or not you’ve had an assessment, are there any particular physical security aspects of your organization that work well that you are willing to recommend (i.e. those you may consider ‘leading practices’)?</LI></OL><P>We appreciate any feedback (if your feedback is too sensitive for posting, we'd be happy to discuss via email or setup a call, virtual meeting, etc.).</P><P>Thanks!</P><P>&nbsp;</P><P>-Ed</P><P>&nbsp;</P><P><STRONG><EM>Edward Skinner, MBA, CISA, CISSP, GSNA, GCCC, Security+</EM></STRONG></P><P>Senior IT Internal Auditor – Office of Internal Audit</P><P>Vanderbilt University Medical Center</P><P>2525 West End Avenue - Suite 1230</P><P>Nashville, TN&nbsp;&nbsp;37203</P><P><EM>Office:&nbsp; </EM>615-875-6554 (ext. 56554)&nbsp;|<EM>Cell: </EM>518-320-2188&nbsp;| <EM>Email:&nbsp;</EM> <U><A href="mailto:edward.w.skinner@vumc.org" target="_blank">edward.w.skinner@vumc.org</A></U></P><P><U><A href="https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.vumc.org%2Fvumcinternalaudit%2F&amp;data=04%7C01%7Cedward.w.skinner%40vumc.org%7Cd78915cd2a334d94242c08d8cd332945%7Cef57503014244ed8b83c12c533d879ab%7C0%7C0%7C637484966899864087%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=ave%2Baq8B7WJ17CufTkstWWGuWDH1S1d1QGdFb4S%2FM18%3D&amp;reserved=0" target="_blank">https://www.vumc.org/vumcinternalaudit/</A></U></P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="EdSkinner1_0-1612901861783.jpeg" style="width: 400px;"><img src="https://community.isc2.org/t5/image/serverpage/image-id/5206i57C8D38EA0FD10CF/image-size/medium?v=v2&amp;px=400" role="button" title="EdSkinner1_0-1612901861783.jpeg" alt="EdSkinner1_0-1612901861783.jpeg" /></span></P><P>&nbsp;</P> Mon, 09 Oct 2023 09:47:34 GMT EdSkinner1 2023-10-09T09:47:34Z Physical Security Assessments https://community.isc2.org/t5/Governance-Risk-Compliance/Physical-Security-Assessments/m-p/43167#M282 <P>Good Afternoon,</P><P>&nbsp;</P><P>We are reviewing our organization's overall physical security (e.g. policies, procedures, org structure, technology, and other controls) for potential improvement, and we have a few questions that we would like to pose to the group:</P><P>&nbsp;</P><OL><LI>Has your organization had a physical security assessment by a third party?</LI><LI>If so (and if you believe that assessment was beneficial), would you mind sharing your general recommendation/leading practice implementations and contact information for the third party assessor?</LI><LI>Whether or not you’ve had an assessment, are there any particular physical security aspects of your organization that work well that you are willing to recommend (i.e. those you may consider ‘leading practices’)?</LI></OL><P>We appreciate any feedback (if your feedback is too sensitive for posting, we'd be happy to discuss via email or setup a call, virtual meeting, etc.).</P><P>Thanks!</P><P>&nbsp;</P><P>-Ed</P><P>&nbsp;</P><P><STRONG><EM>Edward Skinner, MBA, CISA, CISSP, GSNA, GCCC, Security+</EM></STRONG></P><P>Senior IT Internal Auditor – Office of Internal Audit</P><P>Vanderbilt University Medical Center</P><P>2525 West End Avenue - Suite 1230</P><P>Nashville, TN&nbsp;&nbsp;37203</P><P><EM>Office:&nbsp; </EM>615-875-6554 (ext. 56554)&nbsp;|<EM>Cell: </EM>518-320-2188&nbsp;| <EM>Email:&nbsp;</EM> <U><A href="mailto:edward.w.skinner@vumc.org" target="_blank">edward.w.skinner@vumc.org</A></U></P><P><U><A href="https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.vumc.org%2Fvumcinternalaudit%2F&amp;data=04%7C01%7Cedward.w.skinner%40vumc.org%7Cd78915cd2a334d94242c08d8cd332945%7Cef57503014244ed8b83c12c533d879ab%7C0%7C0%7C637484966899864087%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=ave%2Baq8B7WJ17CufTkstWWGuWDH1S1d1QGdFb4S%2FM18%3D&amp;reserved=0" target="_blank">https://www.vumc.org/vumcinternalaudit/</A></U></P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="EdSkinner1_0-1612901861783.jpeg" style="width: 400px;"><img src="https://community.isc2.org/t5/image/serverpage/image-id/5206i57C8D38EA0FD10CF/image-size/medium?v=v2&amp;px=400" role="button" title="EdSkinner1_0-1612901861783.jpeg" alt="EdSkinner1_0-1612901861783.jpeg" /></span></P><P>&nbsp;</P> Mon, 09 Oct 2023 09:47:34 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Physical-Security-Assessments/m-p/43167#M282 EdSkinner1 2023-10-09T09:47:34Z