How is access to your facility controlled?

Access is not controlled
Security at main entrance
ID cards without photos using magnetic stripe or proximity technology
ID cards with phots using proximity technology
ID cards with photos using proximity technology and smart card authentication

How often do you have visitors at your facilities?

Daily
Weekly
Monthly
Annually
Never

How often do you employ contracted or temporary employees at your facilities?

Never
Rarely
Sometimes
Often
Constantly

How many people have physical access to network nodes and links?

One person
A few people
Some people
Many people
Everyone

How often are personal computers scanned for malware?

Daily
Weekly
Monthly
Annually
Never

How often is your anti-virus scanner updated?

Daily
Weekly
Monthly
Annually
Never

Does your business employ an enterprise level firewall?

Yes
No

Does your business encrypt its data?

Yes
No

What are your password requirements?

No requirements
4 characters
8 characters
8 characters requiring 1 or 2 special characters
8 characters requiring more than 2 special characters

How often are users required to change their passwords?

Daily
Weekly
Monthly
Annually
Never

How often do you backup critical data?

Daily
Weekly
Monthly
Annually
Never

How many people have access to backed-up media?

One person
A few people
Some people
Many people
Everyone

Do access logs exist that record who access data?

Yes
No

Do network assets have access control lists?

Yes
No

Do you safely dispose of all written matter?

Yes
No

Click here for the Javascripted version of this assessment