5.1 Physical Security & Access Control

Physical security in an electronics manufacturing environment is not limited toabout theft prevention; it is theabout primary firewall for Intellectual Property (IP) protection and client data integrity. A breach in physical security compromisespreserving the "Chain of Custody" for high-valueclient componentsIntellectual and violates non-disclosure agreementsProperty (NDAs)IP). ThisA chapterbreach defineshere compromises not just inventory, but the mandatorycontractual integrity of the entire operation. Treat facility access controlas architecture,a surveillancelayered standards,filtration andsystem—each assetzone protectionrequires protocolsa requiredhigher authentication friction to maintainenter, TAPAensuring (Transportedonly Assetvalidated Protectionpersonnel Association)interact andwith ISOsensitive 27001 compliance.assets.

Access Control Architecture (Zoning)

~~Facility~~Define ~~access~~your ~~is governed~~facility by arisk, ~~tiered~~not ~~zoning~~by ~~system.~~department. Movement between zones must be physically restricted and ~~electronically~~digitally logged.

Zone 1: Public/~~Administrative~~Admin (Lobby, Offices)
- ~~Access~~Access:: Standard RFID ~~badge.~~Badge.
- ~~Visitor~~If ~~Mandate~~Visitor/Contractor arrives -> Then: ~~All non-employees must sign NDAs and wear distinct~~Issue "~~Visitor"~~Escort ~~badges~~Required" badge (Red/Yellow).
  - Constraint: ~~visible~~Visitors must remain within 2 meters of their host at all times. ~~Visitors must be escorted 100% of the time by badged personnel.~~
Zone 2: ~~General~~ Production Floor (~~SMT Lines,~~SMT, Assembly)
- ~~Access~~Access:: RFID Badge + Anti-Passback ~~enforcement.~~logic.
- ~~Barrier~~:Physics: ~~Full-height~~Anti-passback ~~turnstiles~~prevents ora ~~airlock~~badge ~~doors~~from entering twice without an exit scan, stopping "Tailgating" where one badge grants entry to ~~prevent~~multiple ~~"tailgating."~~
- ~~Log Retention~~~~: Access logs must be retained for~~ people.~~12 months~~.
Zone 3: Restricted (Server Room, High-Value Cage)
- ~~Access~~Access:: Multi-Factor Authentication (MFA). ~~required. This consists of~~ RFID Badge + Biometric ~~Scan~~(Fingerprint/Iris).
- Rule: ~~(Fingerprint~~No orsingle ~~Iris).~~credential is sufficient for high-risk assets.
- ~~Door~~

~~Hardware~~

:Pro-Tip: ~~Doors must be fail-secure (remain locked upon power loss, barring fire code overrides) and equipped with~~Install door contact sensors on all perimeter and Zone 3 doors. Program the access control system to trigger ~~alarms~~a "Door Forced / Door Propped" alarm if ~~propped~~the contact remains open for > 30 ~~seconds~~.seconds.

Video Surveillance (CCTV) Standards

~~The~~Cameras ~~CCTV infrastructure provides~~are forensic ~~auditability~~tools, ~~for~~not ~~safety~~live ~~incidents~~monitors. ~~and~~Their ~~asset~~value ~~tracking.~~lies in the ability to reconstruct an event frame-by-frame.

~~Coverage~~If
~~Mandates~~:
- ~~Entries/Exits~~:Area ~~100%~~is ~~coverage of all perimeter doors and internal zone transitions with facial identification clarity.~~
- Loading ~~Docks~~Dock / Entry: ~~Cameras~~-> Then Camera must capture ~~license~~facial ~~plates~~ID ofand ~~all~~License ~~incoming/outgoing vehicles.~~Plates.
- ~~Production Lines~~~~: Wide-angle coverage of SMT lines to verify machine utilization and operator presence.~~

~~Technical Specifications~~:

~~Resolution~~If: ~~Minimum~~Area is ~~1080p~~High Value (~~2MP)~~The Cage) ~~for~~-> ~~general~~Then ~~areas;~~Resolution must be 4K (8MP) to capture part numbers on labels.
- Retention: Store footage for ~~high-value counting areas.~~
- ~~Frame Rate~~~~: Minimum~~ 15≥ ~~FPS~~90 Days ~~(Frames Per Second).~~
- ~~Retention~~~~: Footage must be stored~~ on ~~redundant~~ RAID ~~arrays~~arrays. A 30-day loop is insufficient for ainvestigating ~~minimum~~inventory ofshrinkage 90discovered ~~days~~during ~~before~~quarterly ~~overwrite.~~audits.

IP Protection & Imaging Policy

~~To protect client designs, the control of image capture devices is strictly enforced.~~

~~Restricted Imaging Zones~~~~: Photography and video recording are strictly prohibited on the production floor ("Red Zone") without written authorization from the Plant Manager.~~
~~Personal Devices~~~~: Personal smartphones and cameras are banned from Zone 2 (Production) and Zone 3 (Restricted). They must be stored in lockers located in Zone 1.~~
~~CCTV Privacy Masks~~~~: Security cameras must be angled or digitally masked to prevent recording contents of computer monitors displaying CAD data, schematics, or BOMs.~~

High-Value Asset Storage ("The Cage")

~~Components classified as High-Value (e.g.,~~ CPUs, FPGAs, ~~Memory)~~and ~~must~~Memory bemodules ~~stored~~represent dense value. Store them in a ~~segregated,~~ physical enclosure ~~known~~that asis ~~"The~~harder ~~Cage."~~to breach than the facility itself.

~~Physical~~If ~~Structure: The enclosure must be floor-to-ceiling chain-link or mesh steel to prevent unauthorized reaching or climbing.~~

~~Inventory Control~~:

~~Cycle Counts~~~~: Mandatory daily cycle count of top 10 value SKUs.~~
~~Transaction Logs~~~~: All items entering or leaving~~Accessing The Cage ~~must~~-> beThen ~~electronically~~Enforce ~~scanned.~~the ~~Manual logbooks are insufficient.~~
Two-Person Rule:.
- Logic: ~~Access~~Two badges must scan simultaneously to ~~The~~release ~~Cage~~the lock. This forces collusion, significantly raising the barrier for ~~inventory~~internal ~~adjustment~~theft.
If ~~requires~~Inventory ~~two~~is ~~authorized~~Top ~~employees~~10 toValue ~~badge~~SKUs -> Then Perform Daily Cycle Count.
- Action: Resolve discrepancies before the shift ends.

IP Protection & Imaging

If entering Zone 2 (Production) -> Then Personal smartphones and cameras are Strictly Prohibited.
- Action: Store devices in ~~simultaneously.~~Zone 1 lockers.
If CCTV views Monitors -> Then Apply Privacy Masks.
- Requirement: Cameras must not record CAD data, schematics, or BOMs displayed on screens.

Final Checklist

~~Security Layer~~	Parameter	~~Limit~~Metric / ~~Mandate~~Rule	Critical State
Zone 2 Access	~~Authentication~~Logic	~~Badge +~~ Anti-Passback Active
Zone 3 Access	~~Authentication~~Credential	~~Badge~~Biometric + ~~Biometric~~Badge
CCTV Retention	~~Data~~Storage ~~Retention~~Duration	>≥ 90 Days
~~CCTV~~Door Alarms	~~Resolution~~Propped Time	~~>1080p~~
IP< ~~Protection~~	~~Personal~~30 ~~Phones~~	~~Banned in Zone 2/3~~Seconds
The Cage	~~Access~~Entry Protocol	Two-Person Rule
~~The~~Personal ~~Cage~~Devices	~~Inventory~~Zone ~~Freq.~~2 Status	~~Daily~~Banned ~~(Top~~/ ~~10 SKUs)~~Lockers
~~Perimeter~~Visitor Policy	~~Door Propped Alarm~~Supervision	~~>30~~100% ~~Seconds~~Escort