Standard operating procedures on secure hardware acquisition, storage and transfer

[redshiftzero]

Some organizations may be unfamiliar with best practices around the acquisition, storage and transfer of secure hardware and associated secrets. To be clear, the hardware here includes the Secure Viewing Station, the Tails drives, 2FA token/device, and the associated secrets are the passphrases required to access these devices. Let's add some suggested best practices to the docs on these topics.