Physical security mechanisms exist to allow only authorized personnel access to secure areas.
Does the organization allow only authorized personnel access to secure areas?