IT Brief UK - Technology news for CIOs & IT decision-makers
United Kingdom

Guides

#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things

Search

Ps chris weston headshot(2)
#
DevOps
#
Hyperscale
#
MFA

Six data centre security best practices

Sat, 18th Oct 2025
By Chris Weston, Director of Product Management, Avigilon at Motorola Solutions

In the digital age, efforts to protect sensitive data against sophisticated attacks is a central priority for all organisations. However, whether on-premises, cloud-based or part of a hybrid installation, securing data centres from cross-practice threats can be uniquely challenging.

Site-specific and comprehensive best practices spanning both physical and cybersecurity practices must be adhered to in order to ensure the integrity and security of sensitive data. 

Below are six holistic data centre security best practices for all facility operators to consider.

1. Secure and observe building perimeters

Robust perimeter security measures are the first line of defence against physical breaches, helping to both deter criminality and provide greater visibility into emerging threats. Fences and walls help to prevent intrusion events and divert foot traffic into easily-observable areas, while guards stationed around the perimeter provide a visual deterrent to would-be intruders.

Perimeters must be observable through well-positioned, high-quality video security cameras, with security teams provided remote access to real-time camera feeds. Devices with multiple sensors like the Avigilon H6A Dual Head Camera can secure optimal coverage with minimal hardware, as well as use native IR illuminators to capture clear footage in all light conditions.

2. Implement robust access control solutions

Data centre security measures must help to prevent both external and internal unauthorized access events. Robust access control measures are essential to ensuring only verifiable and trusted persons are able to access sensitive assets. Both organizational and technological measures must be deployed, e.g. zero trust policies and multi-layer access control solutions.

Multi-factor authentication should be used to secure high-risk areas behind layered security protections, combining biometric identifiers with token-based physical credentials. Operators should consider mobile-enabled access systems that can be viewed and controlled remotely via a secure cloud platform to help identify and address suspicious events swiftly at all times.

3. Leverage intelligent threat detection tools

Modern data centres face significant, continuous threats targeting both physical and digital assets, requiring operators to ensure systems are diligently observed at all times. In most cases, constant manual observation is not a practical solution, so teams should consider the benefits of leveraging intelligent, AI-driven physical and cybersecurity threat detection tools.

Avigilon offers both a flexible cloud-native and robust on-premise video management system with real-time intelligence to keep operators informed of emerging physical security events using video analytics. Alongside such a platform for physical security, teams should consider leveraging AI-informed Network Intrusion Detection Systems (NIDS) to autonomously detect and address sophisticated cyber threats.

4. Segment networks and computer systems

Network segmentation is an important data centre security best practice that operators can deploy to minimize attack surfaces and mitigate data breaches. Professionals should define boundaries between networks where traffic is closely observed for suspicious activities and anomalous events and use partitions to prevent attacks spreading across high-risk systems. 

Access to segmented networks should be restricted only to trusted, verifiable persons, with a policy of zero trust enacted to help prevent unintentional internal breaches. In addition, strict digital access controls should be deployed, leveraging multi-factor authentication to minimize risk, with credentials and passwords regularly changed to meet cybersecurity best practices.

5. Conduct regular staff training sessions

Data centre security measures and best practices will only effectively deter security incidents if everyone across the organization knows how to maintain them. A 2024 study published by Mimecast revealed that 95% of data breaches that year were caused by human error, with lapses in staff judgement holding similar potential to expose physical security vulnerabilities.

All data centre employees should be trained in physical and cybersecurity best practices at least once per year, with sessions offering a great opportunity to highlight and discuss novel threats facing the organization. Operators of multi-tenant data centres should make efforts to discuss cybersecurity protections with tenants and provide helpful resources where possible. 

6. Perform frequent security audits and tests

Finally, to help ensure all systems and measures continue to function optimally and are able to address novel threats, it's vital that security teams perform frequent audits and penetration tests covering all physical and digital systems. Tests should simulate realistic scenarios and results should inform improvements, with plans enacted to strengthen systems continuously.

Full-site security audits should be conducted at least annually, though for high-risk facilities, quarterly or even monthly tests will be more appropriate. External security integrators should be consulted as part of a comprehensive auditing process to help ensure physical security measures provide necessary protection, as well as confirm security systems are up-to-date.

Safeguard your data centre with an integrated security solution 

Modern data centres face significant threats across both physical and digital environments, requiring constant observation and swift responses to protect against sophisticated attacks.

Avigilon provides a range of advanced, user-friendly security solutions designed to safeguard facilities against physical threats that can put both data and property at risk. From integrated video and access control solutions that work in tandem to improve situational awareness, to AI-powered analytics tools primed to autonomously alert on threats, our ecosystem enables security teams to develop responsive and proactive security installations to help maintain data centre security best practices.
- - - - - - -
About the author:
Chris Weston, Director of Product Management for Avigilon Unity at Motorola Solutions, has over a decade of experience in product within the video security and access control sector. He is deeply knowledgeable about how AI and other emerging technologies can be leveraged to address security challenges, and is committed to creating solutions that contribute to positive global impact.

Related stories
Cloud breaches driven by identity failures & process flaws
DE-CIX predicts AI revolution in finance, healthcare & industry by 2026
CFOs prioritise data access as overwork undermines decisions
CrowdStrike & CoreWeave unite to secure advanced AI cloud workloads
CrowdStrike expands Falcon with mission-ready agents for AI security

Top stories

Check Point scores 99.59% in top firewall security report by NSS
Exclusive: Financial services CIO urges banks to embrace Celonis tech
Trustmarque & Ultima merge to form GBP £1 billion IT giant
Why generic eCommerce platforms aren’t enough for the next generation
Catherine Birkett joins Twinkl to chair Audit & Risk Committee