The University of Chicago protects information that is the subject of legal, contractual, or enterprise confidentiality and security requirements (collectively the Security Obligations); such information is called Protected Information. The following policies define the requirements for the physical, environmental controls, and facility access controls to ensure the protection of Information Assets and Information Systems from unauthorized access and safeguard against environmental threats.
These policies and process documents are based on NIST Special Publication 800-53 (Rev. 4), Physical and Environmental Protection Control Family.
ITS-PE-1: Physical and Environmental Protection Policy and Procedures
ITS-PE-2: Data Center and Operations - Physical Access Authorizations
ITS-PE-3 & PE-8: Physical Access Controls and Visitor Access Records
ITS-PE-4: Access Control for Transmission Medium
ITS-PE-5: Access Control for Output Devices
ITS-PE-6: Monitoring Physical Access
ITS-PE-9: Power Equipment & Cabling