physical security query stockroom concern

This is more in the realms of physical security, but in our IT section (tier 1 and 2 support, so service desk right - desktop support type roles), we have an electronic key cabinet which stores the keys for endless other storage units, but specific to this questions, stores the keys to a stock room which is full of reasonable specification "yet to be allocated to users" laptops. My concern at present is anyone in the section has the PIN to the key cabinet, so everyone could in theory go and get the stock room key and steal a laptop. I am struggling to think of a compensating control/process to minimise this risk. In theory all staff need access to the cabinet for one reason or another, but perhaps not all users require access to the stock room. Any ideas welcome.

similar to the link below:
http://www.simplysafes.co.uk/phoenix-electronic-key-cabinet-ks0032-48-key-p-745.html?gclid=CNWA8OyJx9ICFaMy0wodUBwCRg
LVL 4
pma111Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

viki2000Commented:
That special room, the stock room, should have a different key-lock system.
It should be with a card-like, a logging system.
Each time when someone goes in the stock room it should be logged as time and date and ID. Not an universal key, but individual ID (RFID) cards. Then you know exactly who went in/out and at what time/date.
1
Thibault St john Cholmondeley-ffeatherstonehaugh the 2ndCommented:
Are the keys in the cabinet labeled, or just numbered?
If they are numbered and sit on numbered tags and referenced from a separate book or list to find what they open then you could 'hide' them by only issuing the relevant parts of that list to different individuals or sections.
Only those that should know are told that the stock room is key 25, and it is their responsibility not to share that information.
It's not secure, but is a step closer than having all the keys and their purpose available to everyone.
0
viki2000Commented:
I mean, replace the existing door lock with something like this:
http://www.safewise.com/blog/finding-the-perfect-electronic-door-lock-for-your-home/
On Amazon, below the device, at recommendations, you may see various models.
0
KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Natty GregIn Theory (IT)Commented:
agreed with viki2000 first comment, but if you do not want to change your current system then assign two key holder, and a logging system so each time they sign in and document what was removed from the room, or install cameras that records 24 hrs a day however with camera you will want to store videos for a month or reviewed and delete on a 24hr basis
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
pma111Author Commented:
>then assign two key holder

can you elaborate on that?
0
Natty GregIn Theory (IT)Commented:
Two people that are most trust worthy to hold the key to lock and unlock the system -whom will be held accountable for everything in the room.
You need two in case one is one vacation or sick. But they will be the go to person whenever anyone needs anything - in other words each person is watching each person because no one wants to be blamed for missing items.
0
masnrockCommented:
Based on what you've mentioned, natty's idea actually sounds the most ideal. Minimizing the number of people who can even get into the room, but ensuring that there is a backup.

Otherwise, I'd suggest installing tying the door of the stock room to your existing access control system if you have one. That way you'd be able to audit who actually entered. If you actually have to badge yourself into a room, you're going to think more carefully about it because a record of entry will exist. Cameras in the vicinity would help as well.
0
Thibault St john Cholmondeley-ffeatherstonehaugh the 2ndCommented:
In a nice world you would be able to trust the people you work with. Addition of levels of security remove the feeling of trust and create 'sides'. You are no longer a team all pulling together, but two sides, management and workers. The workers don't feel trusted so they start not to share what they are doing. Management feel they can't trust the workers and start to impose working conditions. More time is spent keeping to these rules and ensuring that everyone does, and job satisfaction and the feeling of teamwork gets forgotten.
You should be able to trust the people you work with.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Storage

From novice to tech pro — start learning today.