A reliable and resilient internet connection is essential for many business premises. However, installing a robust internet line in a shared building can be complex. One key factor that can significantly impact this process is the need for “wayleave” agreements.
Wayleave refers to the legal right granted by a property owner to install infrastructure, such as internet cabling, on their property. Without this agreement, your business may face significant delays or restrictions in its ability to establish a resilient internet connection.
ISO 27001: The Importance of a Resilient Internet Connection
ISO 27001 is the internationally recognised standard for an Information Security Management System. One of the core aspects of this standard is ensuring that your organisation’s IT infrastructure is secure, resilient, and reliable.
A resilient internet line can be crucial for supporting business continuity, ensuring data availability, and protecting against both internal and external threats. However, the need for a wayleave agreement can present a challenge.
How Wayleave Affects Internet Installation
Delays in Installation
Securing wayleave can be a lengthy process. Multiple stakeholders—such as landlords, neighbouring property owners, and local authorities—may need to be involved. Without their consent, your company may face significant delays.
Threat to Redundancy and Resilience
ISO 27001 requires organisations to plan for ‘redundancy’ to ensure their network is resilient. This can mean installing multiple internet lines through different providers or routes to avoid single points of failure. A wayleave agreement might restrict where cabling can be installed, thus limiting your organisation’s ability to diversify network routes.
Cabling Security
ISO 27001 also places significant emphasis on the security of network infrastructure, including \cabling security’. Without wayleave, your organisation may have to compromise on the physical route of cables, potentially exposing them to public areas or shared spaces where they are more vulnerable to tampering or accidental damage. Ensuring that cables are secure and tamper-resistant is critical for maintaining data confidentiality, integrity, and availability.
Contractual and Legal Considerations
A set of controls in the standard addresses security within supplier relationships. The same principle applies when dealing with wayleave agreements. Your organisation must ensure that any wayleave arrangement includes provisions that protect the security of your infrastructure.
These agreements should set out:
- Access rights for maintaining and securing cabling
- Restrictions on third-party access to sensitive areas
- Liability in the event of disruption or damage to the cabling
Failure to include such clauses could leave your company vulnerable to legal disputes or unplanned outages, both of which can impact your compliance with ISO 27001.
Mitigating Wayleave-Related Risks
To minimise the risks associated with wayleave, it’s essential to plan ahead and engage in early discussions with all stakeholders. Some mitigation strategies include:
- Engaging Legal Expertise,
- Consider Alternative Routes,
- Clarifying Contractual Obligations,
- Regular Audits and Monitoring.
A resilient internet connection is an important component of ISO 27001 compliance, but securing it can be complex, especially when wayleave agreements are required. These legal permissions can delay installation, limit redundancy options, and introduce security risks, all of which could compromise your company’s ability to meet ISO 27001 standards.
By understanding the implications of wayleave, proactively managing legal contracts, and ensuring all security controls are met, you can mitigate these risks and ensure your internet infrastructure is resilient and secure.