Education > EXAM > SAPPC Exam Study Guide with Complete Solutions (All)
Describe the purpose, intent, and security professional's role in each step of the Command Cyber Readiness Inspections (CCRI) process - ANSWER Defining the scope, the inspection phase, documentation o... f observations, and reporting findings. A security professional would have responsibilities in defining the scope of the inspection, overseeing the self-inspection and remediation efforts, and coordinating with the CCRI team throughout the remainder of the process List two factors that should be considered when determining position sensitivity - ANSWER (1) Level of access to classified information (2) IT level needed (3) Duties associated with position Explain the process for responding to a "spillage" - ANSWER 1. Detection (implied) 2. Notification and preliminary inquiry 3. Containment and continuity of operations 4. Formal inquiry 5. Resolution 6. Reporting Explain how the adjudication process contributes to effective risk management of DoD assets - ANSWER Determines an individual's loyalty, reliability, and trustworthiness are in the best interest of national security Explain why access control measures are contingent on Force Protection Conditions - ANSWER The Force Protection Conditions determine the amount of control measures needed to be taken in response to various levels of threats against military facilities or installations. Define the purpose and function of the militarily critical technologies list (MCTL) - ANSWER Serves as a technical reference for the development and implementation of DoD technology, security policies on international transfers of defense-related goods, services, and technologies as administered by the Director, Defense Technology Security Administration (DTSA). Describe how authorization of Limited Access Authority impacts risk to DoD assets - ANSWER Increases risk by allowing a foreign national access to classified information. Reduces risk by ensuring Foreign Nationals with a unique or unusual skills set have been properly investigated, adjudicated or vetted before being granted access to specific pieces of classified information only. List three different types of threats to classified information - ANSWER (1) Insider threat (2) Foreign Intelligence entities (3) Cybersecurity Threat What is the security professionals' role in pursuing and meeting cyber security goals? - ANSWER The role of the cyberspace workforce is to "secure, defend, and preserve data, networks, net-centric capabilities, and other designated systems by ensuring appropriate security controls and measures are in place, and taking internal defense actions" (DoDD 8140.01). Per DoDI 8500.01, Cybersecurity (March 14, 2014), personnel occupying cybersecurity positions must be assigned in writing and trained / qualified in accordance with their role. Identify specific baseline administrative and/or physical security controls applicable to each system categorization - ANSWER Controls are identified by enumerating the common controls, identifying those relevant to the categorization level as defined in NIST SP 800-53, potentially tailored by the Authorizing Official, and overlays are applied based on the nature of the system. List three (3) factors for determining whether US companies are under Foreign Ownership Control of Influence (FOCI) - ANSWER 1. Record of economic and government espionage against the US targets. 2. Record of enforcement/engagement in unauthorized technology transfer. 3. Type and sensitivity of the information that shall be accessed. 4. The source, nature and extent of FOCI. 5. Record of compliance with pertinent US laws, regulations and contracts. 6. Nature and bilateral and multilateral security and information exchange agreements. 7. Ownership or control in whole or part, by a foreign government. How does lack of attention to the concept of compilation of information introduce risks to DoD assets? - ANSWER 1. Unauthorized disclosure 2. Misclassification 3. Security Violation 4. Improper safeguarding 5. Improper dissemination 6. Improper handling 7. Improper destruction 8. Data Spill List at least three indicators of insider threats - ANSWER 1. Failure to report overseas travel or contact with foreign nationals. 2. Seeking to gain higher clearance or expand access outside the job scope. 3. Engaging in classified conversations without a need to know. 4. Working hours inconsistent with job assignment or insistence on working in private. 5. Exploitable behavior traits. 6. Repeated security violations. 7. Attempting to enter areas not granted access to. 8. Unexplained affluence/living above one's means. 9. Anomalies (adversary taking actions which indicate they are knowledgeable to information). 10. Illegal downloads of information/files. What is the difference between physical security surveys and physical security inspections? - ANSWER A physical security survey is a formal record assessment of an installation's overall security posture; whereas a physical security inspection is a formal record of compliance of physical procedures and measures implemented by a unit or activity to protect its assets Describe the security professional's possible roles in handling a security incident (*hint SSRII*) - ANSWER 1. Secure 2. Safeguard 3. Report 4. Inquire 5. Investigate List at least three individuals in the personnel security investigation (PSI) process and describe their roles - ANSWER Facility Security Officer/Security Manager/Security Officer/Security Coordinator/Security Assistant: initiates, reviews, forwards E-Qip investigation to investigation service provider (ISP) Subject: Completes forms and provides additional information if required Investigator: Conducts PSI Adjudicator: Determines security clearance eligibility What are at least three principle incidents/events required to be reported to DoD counterintelligence (CI) organizations? - ANSWER 1. Espionage 2. Sabotage 3. Terrorism 4. Cyber 5. Insider Threat List three elements that a security professional should consider when assessing and managing risks to DoD assets - ANSWER 1. Asset 2. Threat 3. Vulnerability 4. Risk 5. Countermeasures Explain how visitor identification control methods are used to effectively control access to facilities - ANSWER Ensure only authorized personnel and materials that enter and exit from an installation or facility are properly identified, verified, and authenticated Briefly define a Special Access Program - ANSWER A program established for a specific class of classified information that imposes safeguarding and access requirements that exceed those normally required for information at the same classification level Identify the three core components of the Risk Assessment process - ANSWER 1. Asset criticality 2. Threat Assessment 3. Vulnerability Assessment List at least three (3) types of security briefings that help manage risks to DoD assets - ANSWER 1. Initial orientation 2. Annual refresher 3. Threat awareness 4. Foreign Travel 5. Derivative classification 6. Debriefings 7. Termination briefing 8. Counterintelligence briefing Who determines or identifies when physical security surveys and inspections are required? - ANSWER 1. DoD Component Commanders. 2. Program Managers 3. Security Managers 4. Physical Security Specialists/Officers List three transmission and transportation requirements that help manage risks to DoD assets - ANSWER 1. Safeguarding 2. Briefings 3. Documentation 4. Personal control 5. Pre-coordination 6. Preparing for transportation (packaging) 7. Utilizing proper methods of transmission/transportation based on classification level 8. Intended recipients have proper clearance/eligibility and need to know (or access) 9. Capability to properly store classified information List three types of safeguarding procedures for classified information - ANSWER 1. Proper storage 2. Proper handling 3. Approved disposition 4. Proper transmission/transportation methods 5. Receipt use, when required 6. Dissemination 7. Physical security measures 8. Technical, administrative, and personnel control measures (deleted access control as these measures constitute access control) 9. Develop emergency plan Describe the purpose of the Foreign Visitor Program - ANSWER To track and approve access by a foreign entity to information that is classified; and to approve access by a foreign entity to information that is unclassified, related to a US Government contract, or contractor/government facility visits covered by International Traffic in Arms Regulations (ITAR) Explain how effective implementation of the continuous evaluation process contributes to management of the risks to DoD assets - ANSWER Ensures that individuals with security clearance eligibility and access are continuously assessed through utilization of accessible databases and other lawfully available information; continue to meet adjudicative standards; and that any issues that may arise are promptly reported and addressed Briefly describe the purpose of the DD Form 254 - ANSWER Convey security requirements and classification guidance, and provide handling procedures for classified materials received and/or generated under a classified contract List the three categories of Special Access Programs - ANSWER 1. Acquisition 2. Intelligence 3. Operations and support Identify the five Cognizant Security Agencies (CSAs) and describe their role in the National Industrial Security Program (NISP) - ANSWER 1. Department of Defense 2. Director of National Intelligence 3. Department of Energy 4. Nuclear Regulatory Commission 5. Department of Homeland Security. Role: implement and oversee an Industrial Security Program to safeguard classified information with cleared industry under the respective CSA's jurisdiction. What are the five steps in the DoD risk management model - ANSWER 1. Assess Assets 2. Assess Threats 3. Assess Vulnerabilities 4. Assess Risks 5. Determine Countermeasures What are 3 core components of the risk assessment process? - ANSWER 1. Asset criticality 2. Threat assessment 3. Vulnerability assessment What do SAPs aim to achieve? - ANSWER 1. Protect technological breakthroughs 2. Cover exploitation of adversary vulnerabilities 3. Protect sensitive operational plans 4. Reduce intelligence on U.S. capabilities What are the SAP Lifecycle - ANSWER 1. Establishment (is extra protection warranted?) 2. Management and Administration (continued need? processed followed?) 3. Apportionment (proper measures in place? approval received) 4. Disestablishment (program no longer needed?) What is the five-step OPSEC process? - ANSWER 1. Identify critical information 2. Analyze threats 3. Analyze vulnerabilities 4. Assess risks 5. Apply OPSEC countermeasures What are the 5 steps to RMF? - ANSWER 1. Identify the critical assets that require protection 2. Identify undesirable events and expected impacts 3. Value and prioritize assets based on the consequence of loss 4. Assess the risks and 5. Determine countermeasures What the 5 categories of assets? - ANSWER 1. People 2. Information 3. Equipment 4. Facilities and 5. Activities and Operations Define the four levels of asset impact loss - ANSWER 1. Critical indicates that compromise to the assets targeted would have grave consequences leading to loss of life, serious injury, or mission failure. The rating scale is from 50-100 2. A High value indicates that a compromise to assets would have serious consequences resulting in the loss of classified or highly sensitive data that could impair operations affecting national interests for a limited period of time. The rating scale is from 13-50 3. An asset value of Medium indicates that a compromise to the assets would have moderate consequences resulting in the loss of confidential, sensitive data or costly equipment/property that would impair operations affecting national interests for a limited period of time. The rating scale is from 3-13 4. A Low value indicates that there is little or no impact on human life or the continuation of operations affecting national security or national interests. The rating scale is from 1-3 [Show More]
Last updated: 6 months ago
Preview 1 out of 10 pages
Education> EXAM > Tefl.org - Teaching Large Classes Course (Level 5) Coursework (All)
Tefl.org - Teaching Large Classes Course (Level 5) Coursew
By philip11z , Uploaded: May 29, 2023
$14
Education> EXAM > Tefl.org - Full Grammar Coursework (All)
Tefl.org - Full Grammar Coursework
By philip11z , Uploaded: May 29, 2023
$14
Education> EXAM > REGIS NU643 Final Exam Latest 2023/REGIS NU643 Final Exam Latest 2023 (All)
Question 1 A 28 year old male presents with a severe alcohol abuse problem and you are discussing pharmacotherapy as part of his treatment plan. You advise naltrexone and use which of the following...
By alan2028 , Uploaded: May 24, 2023
$37.5
Education> EXAM > SSI FINAL TEST - QUESTIONS AND ANSWERS (All)
SSI FINAL TEST - QUESTIONS AND ANSWERS What are two examples of hard coral? Elkhart and staghorn The ocean is an important source of life because: It is home to man of the first links in the Earth's f...
By Nurse Henny , Uploaded: May 19, 2023
$10
Education> EXAM > Dd: Rus Key Phrases 02 (33) Questions with Answers,100% CORRECT (All)
Dd: Rus Key Phrases 02 (33) Questions with Answers All or nothing - CORRECT ANSWER все или ничего [vse ili nichego] all the time - CORRECT ANSWER все время [vse vremya] Cup of coffee -...
By Nolan19 , Uploaded: May 19, 2023
$7
Education> EXAM > Dd: Rus - Adjectives02 (33) Questions with Answers,100% CORRECT (All)
Dd: Rus - Adjectives02 (33) Questions with Answers happy CORRECT ANSWER счастливый [schastlivyy] healthy CORRECT ANSWER здоровый [zdorovyy] hot CORRECT ANSWER горячий [goryachiy] kind CORR...
By Nolan19 , Uploaded: May 19, 2023
$7.5
Education> EXAM > OAE 012 Early childhood education Questions with Answers,100% CORRECT (All)
OAE 012 Early childhood education Questions with Answers 6 standards of professional development - CORRECT ANSWER promote child development and learning builds family and community relationshi...
By Nolan19 , Uploaded: May 19, 2023
$7.5
Education> EXAM > 6.01 Play: Early Childhood Education Questions with Answers,100% CORRECT (All)
6.01 Play: Early Childhood Education Questions with Answers Sensorimotor Stage - CORRECT ANSWER From birth to age two; chilfren focus on what thry experience, including what they can hear, see, a...
By Nolan19 , Uploaded: May 19, 2023
$7.5
Education> EXAM > FOUNDATIONS OF EARLY CHILDHOOD EDUCATION Questions with Answers,100% CORRECT (All)
FOUNDATIONS OF EARLY CHILDHOOD EDUCATION Questions with Answers In recent years, the concept of "readiness" as applied to young children who are just entering early childhood programs has been...
By Nolan19 , Uploaded: May 19, 2023
$7.5
Education> EXAM > Intro to Early Childhood Education Chapters 1 – 6 Questions with Answers,100% CORRECT (All)
Intro to Early Childhood Education Chapters 1 – 6 Questions with Answers Social & Cultural Contexts - CORRECT ANSWER 1. Values, Expectations & behaviors teachers 2. Language 3. Children grow up u...
By Nolan19 , Uploaded: May 19, 2023
$8
Education> EXAM > Early Childhood Education Current Issues in ECE - Research, Trends, and Policy,100% CORRECT (All)
Early Childhood Education Current Issues in ECE - Research, Trends, and Policy quality programs for all children - CORRECT ANSWER focus on teaching and caring for the whole child, along with add...
By Nolan19 , Uploaded: May 19, 2023
$7
Education> EXAM > Early Childhood Education 2|25 Questions with Answers,100% CORRECT (All)
Early Childhood Education 2|25 Questions with Answers Kindergarten Historical Perspective - CORRECT ANSWER Froebel (1800's) developed group education of young children (called kindergartens)...
By Nolan19 , Uploaded: May 19, 2023
$7
Education> EXAM > Early Childhood Education OAE 255 Questions with Answers,100% CORRECT (All)
Early Childhood Education OAE 255 Questions with Answers early childhood education - CORRECT ANSWER The growth, development, and education of children birth through age eight. what do high...
By Nolan19 , Uploaded: May 19, 2023
$11
Education> EXAM > Early Childhood Education 3|21 Questions with Answer,100% CORRECT (All)
Early Childhood Education 3|21 Questions with Answer assessment - CORRECT ANSWER (n) testing for "where children are" and for their progress scapegoat - CORRECT ANSWER (v) to blame another per...
By Nolan19 , Uploaded: May 19, 2023
$7
Education> EXAM > Methods & Materials in Early Childhood Education Questions with Answers,100% CORRECT (All)
Methods & Materials in Early Childhood Education Questions with Answers DAP - CORRECT ANSWER Developmentally Appropriate Practice Benefits of Play - CORRECT ANSWER Allows children to A. Pract...
By Nolan19 , Uploaded: May 19, 2023
$7.5
Connected school, study & course
About the document
Uploaded On
Nov 23, 2022
Number of pages
10
Written in
All
Type
EXAM
This document has been written for:
Course
Education
Paper Category
EXAM
Uploaded
Nov 23, 2022
Downloads
0
Views
18
Avoid resits and achieve higher grades with the best study guides, textbook notes, and class notes written by your fellow students
Your fellow students know the appropriate material to use to deliver high quality content. With this great service and assistance from fellow students, you can become well prepared and avoid having to resits exams.
Your fellow student knows the best materials to research on and use. This guarantee you the best grades in your examination. Your fellow students use high quality materials, textbooks and notes to ensure high quality
Get paid by selling your notes and study materials to other students. Earn alot of cash and help other students in study by providing them with appropriate and high quality study materials.
In Browsegrades, a student can earn by offering help to other student. Students can help other students with materials by upploading their notes and earn money.
We're available through e-mail, Twitter, Facebook, and live chat.
FAQ
Questions? Leave a message!
Copyright © Browsegrades · High quality services·