Castleforce IT Security Team

A.9.2 Equipment security

Objective: To prevent loss, damage, theft or compromise of assets and interruption to the organization’s activities.

A.9.2.1 Equipment siting and protection

Control

Equipment shall be sited or protected to reduce the risks from environmental threats and hazards, and opportunities for unauthorized access.

A.9.2.2 Supporting utilities

Control

Equipment shall be protected from power failures and other disruptions caused by failures in supporting utilities.

A.9.2.3 Cabling security

Control

Power and telecommunications cabling carrying data or supporting information services shall be protected from interception or damage.

A.9.2.4 Equipment maintenance

Control

Equipment shall be correctly maintained to ensure its continued availability and integrity.

A.9.2.5 Security of equipment off premises

Control

Security shall be applied to off-site equipment taking into account the different risks of working outside the organization’s premises.

A.9.2.6 Secure disposal or re-use of equipment

Control

All items of equipment containing storage media shall be checked to ensure that any sensitive data and licensed software has been removed or securely overwritten prior to disposal.

A.9.2.7 Removal of property

Control

Equipment, information or software shall not be taken off-site without prior authorization.

Encryption Partners

Check Point Software Technologies Ltd Check Point have fully implemented the Point Sec product to their Full Disk Encryption range in order to offer security management and data protection.  FIPS-140-2 Certified

Credant-data-encryption  CREDANT Technologies offers the flexibility to choose the encryption solution that best meets your data protection and compliance needs, delivering data encryption across any endpoint - desktops, laptops, handheld devices and removable media - including our patented, intelligent data encryption solutions as well as new hardware and software-based full-disk encryption offerings.  FIPS-140-2 Certified

DESlock+ CESG CCTM Full disk, Removable Media, Email, Folder Encryption DES's award winning DESlock+ encryption software helps organisations and individuals to protect against all types of data breach by offering a simple, yet extremely powerful set encryption tools to protect data in transit and at rest. To meet the needs of Government and corporate bodies the DESlock+ software is certified in the UK by CESG - the UK national technical authority for information, assurance under its Claims Tested Mark (CCTM) scheme. DESlock+ also meets the rigorous FIPS-140-2 standard in the US and is validated by the National Institute of Standards and Technology (NIST). Available as DESlock Standard or DESlock PRO  

Safend protects your enterprise from information leakage Safend Encryptor enforces an enterprise wide encryption policy to protect the data stored on laptop and desktop hard disks, so that sensitive data cannot be read by unauthorized users in the case of loss or theft. Safend Encryptor utilizes Total Data Encryption technology that automatically encrypts all data files, while avoiding unnecessary encryption of the operating system and program files. This innovative concept minimizes the risk of operating system failure, and has a negligible performance impact. Leveraging this unique encryption technology, Safend Encryptor provides transparent hard disk encryption.

IronKey, maker of the worlds most secure flash drive IronKey Enterprise secures data with always-on hardware encryption to meet compliance and data protection requirements.  All user data on an IronKey Enterprise drive is encrypted with high-speed, AES CBC-mode encryption. IronKey Enterprise is deployed quickly using the cloud-based IronKey Enterprise Management Service. Administrators are in full control of deployed devices and if needed can remotely disable devices and wipe data. IronKey Enterprise logs device use for reporting and compliance. FIPS-140-2 Certified

For more details on IronKey Enterprise

Contact Castleforce for help with ISO27001 

Destroy media

Verity Systems Degaussers & Tape Erasers A degausser is a piece of equipment which uses an electro-magnet to erase or wipe date from magnetic media such as audio & video tape, computer storage tapes and even computer hard drives. Often referred to as a tape eraser and hard drive erasers.

SV91M CESG Security Degausser

If you need to securely erase a range of magnetic media including high density metal tapes, cassettes and hard drive then the SV91M CESG approved security degausser is the choice of organisations around the world to comply with their Data Destruction policies.

SV90 CESG Approved Degausser

The SV90 Security Degausser is able to perform automatic erasure of high-density magnetic media achieved by applying a highly focused magnetic field created by Verity Systems exclusive multi-axis, 'pole tip' design.
Assuria Compliance and Vulnerability assessment, change detection, file integrity monitoring, Server Hardening and Log Management NETASQ-UTM-EAL4-Network-Security-appliances Credant we protect what matters DESlock+ FIPS-140-2 CESG CCTM Full disk Encryption, Removable Media Encryption, Email Encryption, Folder Encryption Stonesoft produce high availability multi link ISP firewalls to help reduce single point of failure Sourcefire-3D System and masters of SNORT and CLAMAV InfoGov helps you to achieve compliance, manage risk and demonstrate good governance now, and into the future. Swivel-PINsafe-CESG-CCTM-the-power-of-knowing Lumension-Security-Patch-Management-and-end-point-protection Imprivata OneSign Single Sign-On (SSO) appliance Check Point firewalls and Pointsec Encryption software Wallix-AdminBastion-and-LogBastion-provide-access-control-and-monitoring-solutions

© Copyright Castleforce 2007-2012. Web design by Theme Group