Skip to main content

Physical security

Moodi Mahmoudi avatar
Written by Moodi Mahmoudi
Updated over 2 weeks ago

At a glance

NEXT AI is a remote-only company. Physical controls focus on home/remote workspaces and company devices (screen-lock, secure storage, travel precautions, lost/stolen reporting). Data-center physical security is provided by AWS; NEXT AI personnel do not have physical data-center access.

How physical security works

Home / remote workspace

  • NEXT's office environment has security safeguards, including 24x7x365 alarms monitored by staff, video surveillance security for entry / exit and network rooms, and Fire alarms and sprinkler system.

  • All visitors must sign-in and be escorted and supervised by NEXT employee at all times.

Additionally,

  • Lock screen when away and configure auto-lock ≤ 15 minutes.

  • Keep laptops and media secured (lockable drawer/safe) when unattended; never leave devices in cars.

  • During travel, keep equipment as hand luggage and use extra caution at airport security.

  • Store any paper with sensitive data locked; follow clean-desk/clean-screen practices (shred or confidential disposal).

Devices (endpoints)

  • Endpoint protections include full-disk encryption, screen-lock, current security updates, anti-malware, and personal firewall; remote wipe where supported.

  • Report lost or stolen devices immediately for response and wipe.

  • For removable media and BYOD specifics, see Endpoint security

Data centers (AWS)

  • AWS provides multi-layer physical protections at data centers (e.g., professional security staff, surveillance/detection systems, MFA-controlled access, and alarmed doors for server rooms). NEXT personnel do not have physical access.

Standards alignment

  • ISO/IEC 27002:2022 (Physical controls – Section 7) — reference set for physical entry, secure areas, monitoring, clear desk/screen, and secure equipment handling.

  • NIST SP 800-53 Rev.5 (PE family) — Physical & Environmental Protection controls (e.g., access authorizations, monitoring, emergency power/fire).

Related topics

FAQ

Q: Do NEXT AI employees have physical access to data centers?

No. Data-center physical security is handled by AWS; NEXT AI personnel do not have physical access.

Q: What physical controls apply to remote work?

Screen auto-lock (≤ 15 minutes), secure storage of laptops/media, travel precautions (carry-on only), and clean-desk/clean-screen with shredding or confidential disposal.

Q: How is a lost or stolen laptop handled?

Report immediately; encryption reduces exposure and remote wipe is initiated where supported.

Q: Do you use guards/CCTV at facilities?

Yes. At the AWS data-center layer, physical security includes professional security staff, surveillance/detection systems, MFA-controlled access, and alarmed entries to server rooms.

Q: How do these controls map to standards?

They align to ISO/IEC 27002:2022 (Section 7 physical controls) and NIST SP 800-53 Rev.5 (PE family).

Did this answer your question?