PE 14 ENVIRONMENTAL CONTROLS - NIST-SP-800-53-R5/NIST-SP-800-53-R5.github.io GitHub Wiki
Control:
- a. Maintain [ Selection (one or more): temperature; humidity; pressure; radiation; [ Assignment: organization-defined environmental control ]] levels within the facility where the system resides at [ Assignment: organization-defined acceptable levels ]; and
- b. Monitor environmental control levels [ Assignment: organization-defined frequency ].
Discussion: The provision of environmental controls applies primarily to organizational facilities that contain concentrations of system resources (e.g., data centers, mainframe computer rooms, and server rooms). Insufficient environmental controls, especially in very harsh environments, can have a significant adverse impact on the availability of systems and system components that are needed to support organizational mission and business functions.
Related Controls: AT-3, CP-2.
Control Enhancements:
-
(1) ENVIRONMENTAL CONTROLS / AUTOMATIC CONTROLS
Employ the following automatic environmental controls in the facility to prevent fluctuations potentially harmful to the system: [ Assignment: organization-defined automatic environmental controls ].Discussion: The implementation of automatic environmental controls provides an immediate response to environmental conditions that can damage, degrade, or destroy organizational systems or systems components.
Related Controls: None.
-
(2) ENVIRONMENTAL CONTROLS / MONITORING WITH ALARMS AND NOTIFICATIONS
Employ environmental control monitoring that provides an alarm or notification of changes potentially harmful to personnel or equipment to [ Assignment: organization-defined personnel or roles ].Discussion: The alarm or notification may be an audible alarm or a visual message in real time to personnel or roles defined by the organization. Such alarms and notifications can help minimize harm to individuals and damage to organizational assets by facilitating a timely incident response.
Related Controls: None.
References: None.