16 May 2011

WHITEPAPER: Best Practices For Integrated Physical Security Capabilities Supporting Massachusetts Document Reference: ITD-SEC-10.1 “Enterprise Physical & Environmental Security Policy”


After careful review of the Commonwealth of “Massachusetts Enterprise Physical & Environmental Security Policy”, the following Whitepaper was prepared as a response utilizing concepts, best practices and the countermeasures & tools available under contract FAC64 “Security Surveillance and Access Control Systems.”  

Physical Security Technology today is all about the network, if you’re not on the network you are probably not working.  The physical protection of facilities including the perception of detection of negative human behaviors is the key to effective physical, network security and risk management. 


In response to the Commonwealth of Massachusetts Enterprise Physical & Environmental Security Policy (Reference # ITD-SEC-10.1 Issued Dated 10-29-2010) issued by the Information Technology Division, this document articulates available physical security and monitoring solutions to meet the requirements that Secretariats and their respective Agency or Contractors facilities must address in defining a policy to implement adequate physical and environmental security controls and to secure and protect information, assets, infrastructure and Information Technology (IT) resources by using solutions provided to these departments under procurement contract Operational Services Division (OSD)  contract FAC64.

Any opinions, findings, conclusions, or recommendations expressed in this publication do not necessarily reflect the views of American Alarm & Communications, Inc., (AACI).  Additionally, neither AACI nor any of its employees makes any warrantee, expressed or implied, or assumes any legal liability or responsibility for the accuracy, completeness, or usefulness of any information, product, or process included in this publication. Users of information from this publication assume all liability arising from such use.

According to this policy the Secretariats and their respective Agencies must implement the appropriate combination of controls (administrative, technical, physical) to provide reasonable assurance that security objectives are met. Agencies must achieve compliance with the overall information security goals of the Commonwealth including compliance with laws, regulations, legal agreements, policies and standards to which their technology resources and data, including but not limited to personal information (PI), are subject.  This policy encompasses existing technologies existing within each department and the physical security solution technologies themselves since these integrated solutions are also network appliances.

Download the above document to learn more or call 508-453-2731 to discuss you security requirements.

Learn More About The Ascom Healthcare Platform

 The Ascom Healthcare Platform integrates disparate systems within the healthcare environment to close digital information gaps to help stre...