Have any of you ever been involved in physical penetration testing/assessments of data centres? I wondered if you had a framework for testing the physical security of the data centres? And perhaps any common weak spots you’ve found during such engagements over the years? You’d think any serious IT organisation would have physical security of their main data centre incredibly locked down, but you never know.
All of my physical testing at data centers has been unsuccessful. They pretty much have the physical part figured out so the easy stuff wont work. The only time we had “some success” was when we used some pre texting with it. I had “momentary” access and then was quickly escorted out.