Facility security mechanisms exist to monitor physical access to critical information systems or sensitive/regulated data, in addition to the physical access monitoring of the facility.
Does the organization monitor physical access to critical information systems or sensitive/regulated data, in addition to the physical access monitoring of the facility?