Extra tags: data security
By Jason Van der Meer, Technical Director of Traka APACMEA and General Manager of Traka Oceania
A forecast by International Data Corporation (IDC) indicated that 2025 would see as many as 152,000 IoT devices connecting to the Internet every minute, with the amount of data generated expected to reach 73.1 zettabytes.
With such a massive amount of data generated by IoT each day, the role of big data in enabling real-time analysis is also increasing daily. This has led to the rise of hyperscale data centres – those that exceed 5,000 servers or 10,000 square feet – and the importance of efficient information processing in this day and age.
As we continue to evolve into a more data-driven society, it’s no wonder that many say ‘data is king’ to succeed today. With the proliferation of IoT and big data, the safeguarding of data centres has become more crucial than ever. Today, operators go to great lengths to protect their data from external threats with cybersecurity measures, particularly by upgrading their security techniques to prevent attackers from retrieving digital assets via the servers. However, it’s easy to neglect the second form of data centre security in the process – the physical aspect.
The importance of physical security for data centres
Whether it’s ensuring the facility is protected from natural disasters or keeping intruders out, physical security is pivotal to maintain the resilience of data centres.
In fact, threats such as allowing physical access to a network can be even more difficult to prevent than digital threats. These unsuspected threats, which can stem from mismanagement of access, natural disasters, or even incorrect backing up of systems, can pose internal vulnerabilities to the operators. They must ensure various built-in safety and security features to protect the premises and, therefore, the hardware that stores the digital assets.
In ensuring a more holistic view of data centre security, cyber and physical security should be integrated and given the same amount of attention to deter any threats. Only when the internal risks from service operations are considered can the facilities and digital assets be well secured.
A layered approach for data centre protection
What would be the best way to ensure you integrate physical security with cybersecurity? I would recommend taking a layered approach that allows you to restrict access and controls to the different areas of the facility. One of the most strategic ways to protect a data centre would be to tackle the layers individually, forming a structured approach to protection.
Physical protection can be seen in four different layers; starting from the most outer layer –perimeter security – to facility controls, computer room controls, and cabinet controls. Perimeter security detects and alerts any unauthorised personnel, tracking movements of people and objects around the perimeter with surveillance systems. Next, we have the facility controls, whereby operators regulate entry with access card control systems or video content analytics. The third layer of defence would be security for computer room controls – further limiting only the appropriate personnel with biometric technology, dual-verification systems, etc.
Finally, the fourth and last layer is cabinet controls. This layer tackles the possibility of admitting the wrong personnel and enabling them the power to cause an intentional data breach. To secure the cabinets, it’s important to consider electronic locking systems coupled with additional security measures, namely alarms to detect access out of the scheduled periods and automated logging that offers audit trails.
In ensuring your cabinet controls are well scrutinised, Traka offers an additional tier in your fourth layer of security, enhancing the visibility of your server racks and cabinets with key cabinet integration. Using industry-approved electronic key cabinets and locker solutions with a unique Traka software, the system logs the time of access and by whom, storing this information for incident tracking. Reports and alerts will be shared if an item is returned late or accessed outside of the planned hours.
Best practices to elevate your security
As you think about how to tighten your layers of security, there are a few key practices that can get you started in planning your physical security plan. First and foremost, employee training is pivotal. You would need to keep your employees, the people who are essential for physical security measures to be implemented successfully, in the loop of the protocols in place and the consequences should the rules be violated.
Regular internal audits are also important to identify any vulnerabilities in the data centre. Be sure to check if your access control systems like video analytics and key cabinets are functioning well and have their systems updated to offer access to the right personnel (especially after changes to employee roles). Following the audits, it’s best to further tighten your access control systems. Review the vulnerabilities picked up and implement increased security measures such as second-person authorisation.
As a facility that runs on immense power, you’d want to ensure that redundant power supplies are implemented. This entails creating redundancy in utilities, allowing each power supply (e.g., water, electricity) to continue to run even when other supplies are down.
These practices can effectively identify current security gaps, as you work alongside your employees and security providers to fulfill the four layers of physical security. Soon, you’ll find that securing assets, minimising risks, and ensuring regulations in the data centre will become much more manageable.