Copy and Edit

SFPC (Possible Test Questions)

Description

SFPC SPeD Practice Quiz
Casey Neville
Quiz by Casey Neville, updated more than 1 year ago
Casey Neville
Created by Casey Neville about 2 years ago
4331
9
0

Resource summary

Question 1

Question
Two security professionals – Jo and Chris – are discussing the contracting process. Jo says that the Federal Acquisition Regulation governs the process the federal government uses to acquire or purchase goods and services. Chris says that although the Federal Acquisition Regulation’s intent is to provide uniform and government-wide policies and procedures for acquisition, the Department of Defense has issued a supplemental acquisition regulation called the DFAR. Who is correct?
Answer
  • Jo is correct.
  • Chris is correct.
  • Jo and Chris are both correct.
  • Jo and Chris are both incorrect.

Question 2

Question
Two security professionals – Jo and Chris – are discussing the Federal Acquisition Regulation (FAR). Jo says that, to be awarded a contract, a bidder needs to show that his or her organization it meets the FAR provisions of that contract. Chris says that a bidder can be awarded a contract with FAR provisions if his or her organization can demonstrate that it will be able to comply with those provisions at the time of the contract award. Who is correct?
Answer
  • Jo is correct.
  • Chris is correct.
  • Jo and Chris are both correct.
  • Jo and Chris are both incorrect.

Question 3

Question
Working papers need to be finalized or destroyed after how many days?
Answer
  • 180 Days
  • 90 Days
  • 30 Days
  • 7 Days

Question 4

Question
FOUO becomes legacy it turns into?
Answer
  • CUI
  • UNCLASSIFIED
  • CIA
  • FBI

Question 5

Question
Banner Line Markings start with what first?
Answer
  • CLASSIFICATION
  • DATE
  • ORIGINATORS NAME
  • ORGANIZATIONS NAME

Question 6

Question
Definition of BIOMETRIC: "Measurable Physical characteristics or personal behavior traits used to recognize the identity, or verify the claimed identity. Fingerprints, Iris, handwriting, voice recognition."
Answer
  • True
  • False

Question 7

Question
Contractors are automatically authorized to do work at the level of the DD254.
Answer
  • True
  • False

Question 8

Question
What are the 3 SAP categories?
Answer
  • Aquisition
  • Intelligence
  • Operations and Support
  • Acknowledged

Question 9

Question
Couring information within a hotel room is allowed as long as it’s locked in a safe and the courier is in the room.
Answer
  • True
  • False

Question 10

Question
CNWDI, RD and FRD are categories which fall under which department?
Answer
  • Dept. Of Energy (DOE)
  • Dept. Of Defense (DoD)
  • CIA
  • FBI

Question 11

Question
What is a Security Violation?
Answer
  • An event that results in or could be expected to result in the loss or compromise of classified information
  • This event cannot reasonably be expected to and does not result in the loss, compromise, or suspected compromise of classified information.

Question 12

Question
What is a Security Infraction?
Answer
  • This event cannot reasonably be expected to and does not result in the loss, compromise, or suspected compromise of classified information.
  • An event that results in or could be expected to result in the loss or compromise of classified information

Question 13

Question
What is the form number for a Top Secret coversheet?
Answer
  • 703
  • 704
  • 705
  • 702

Question 14

Question
What is the form number for a Secret coversheet?
Answer
  • 703
  • 704
  • 705
  • 701

Question 15

Question
What is the form number for a Confidential coversheet?
Answer
  • 703
  • 704
  • 705
  • 706

Question 16

Question
If someone accidentally gave a foreign entity access to classified information, which guideline would it fall under?
Answer
  • Use of Information Technology Systems
  • Use of Information DoD Systems
  • Use of Classified Systems
  • Use of Unclassified Systems

Question 17

Question
SCATTERED CASTLES: "Intelligence Community (IC) Personnel Security Database that verifies personnel security access and visit certifications."
Answer
  • True
  • False

Question 18

Question
What is the RMF six-step process?
Answer
  • Categorize Information Systems
  • Select Security Controls
  • Implement Security Controls
  • Assess Security Controls
  • Authorize Information System
  • Monitor Security Controls
  • Accountability Measures
  • Implement Cyber Controls
  • Risk Assessment

Question 19

Question
Vault doors have non-removable hinge pins.
Answer
  • True
  • False

Question 20

Question
What is the highest classification a contractor can courier overseas?
Answer
  • Unclassified
  • Secret
  • Confidential
  • Top Secret

Question 21

Question
Access for a retired flag/general officer?
Answer
  • 3 Months
  • 3 Years
  • 6 Months
  • 6 Years

Question 22

Question
Industrial is NOT SAP is not a category
Answer
  • True
  • False

Question 23

Question
Who controls the list of approved shredders?
Answer
  • NSA
  • GSA
  • BSA
  • AA

Question 24

Question
What are the threat levels?
Answer
  • Low
  • Moderate
  • Significant
  • High
  • (D) Delta
  • (C) Charlie
  • (B) Bravo
  • (A) Alpha
  • (N) Normal

Question 25

Question
What are the levels for FPCON?
Answer
  • Low
  • Moderate
  • Significant
  • High
  • (N) Normal
  • (A) Alpha
  • (B) Bravo
  • (C) Charlie
  • (D) Delta

Question 26

Question
Key word for (N) Normal FPCON?
Answer
  • GENERAL THREAT
  • INCREASED GENERAL THREAT
  • MORE PREDICTABLE
  • LIKELY
  • IMMINENT

Question 27

Question
Key word for (A) FPCON?
Answer
  • GENERAL THREAT
  • INCREASED GENERAL THREAT
  • MORE PREDICTABLE THREAT
  • LIKELY
  • IMMINENT

Question 28

Question
Key word for (B) Normal FPCON?
Answer
  • GENERAL THREAT
  • INCREASED GENERAL THREAT
  • MORE PREDICTABLE THREAT
  • LIKELY
  • IMMINENT

Question 29

Question
Key word for (C) Normal FPCON?
Answer
  • GENERAL THREAT
  • INCREASED GENERAL THREAT
  • MORE PREDICTABLE THREAT
  • LIKELY
  • IMMINENT

Question 30

Question
Key word for (D) Normal FPCON?
Answer
  • GENERAL THREAT
  • INCREASED GENERAL THREAT
  • MORE PREDICTABLE THREAT
  • LIKELY
  • IMMINENT

Question 31

Question
What are the 5 OPSEC steps?
Answer
  • Identify Critical Information
  • Analyze Threats
  • Analyze Vulnerabilities
  • Assess Risks
  • Apply Countermeasures
  • Assess Vulnerabilities
  • Counter Risks

Question 32

Question
What is the purpose of marking classified materials?
Answer
  • To alert holders to the presence of classified information, how to properly protect it, and for how long.
  • To deter foreign adversaries from committing actions aimed at accessing such information.
  • To provide guidance for interpretation and analysis of classified information.
  • To alert holders to the methods used to collect classified information.

Question 33

Question
What is included in the markings of classified information?
Answer
  • Derivative classifier as the authority to make declassification determinations.
  • Agencies and authorities that have previously accessed the classified information.
  • Document holder as the sole authority to make transfer and dissemination determinations.
  • Sources and reasons for the classification.

Question 34

Question
When a classified data spill occurs, who is responsible for ensuring that policy requirements for addressing an unauthorized disclosure are met?
Answer
  • Activity Security Manager
  • Information Assurance Staff
  • Information Assurance Manager
  • Information Assurance Officer

Question 35

Question
The inability to deny you are the sender of an email would be an indication of a lapse in:
Answer
  • Non-Repudiation
  • Confidentiality
  • Integrity
  • Availability

Question 36

Question
Which of the following is the first action done to downgrade, declassify or remove classification markings?
Answer
  • Through the appropriate chain of command, contact the original classification authority (OCA) to confirm that information does not have an extended classification period.
  • Change the classification authority block to indicate “Declassify ON:” to show the new declassification instructions.
  • Take all classification markings off the document and redistribute.
  • Request a waiver from the Information Security Oversight. Office (ISOO) to remove the declassification markings.

Question 37

Question
What is the purpose of the Personnel Security Program (PSP)?
Answer
  • To define original classification for DoD assets and information.
  • To designate individuals for positions requiring access to classified information.
  • To ensure that only loyal, trustworthy, and reliable individuals may access classified information or perform sensitive duties.
  • To describe the safeguarding requirements personnel must employ when handling classified materials at a cleared contractor facility.

Question 38

Question
Which of the following is considered an element of the Personnel Security Program (PSP)?
Answer
  • Risk Assessment and Analysis
  • Implementation
  • Classification
  • Continuous Evaluation

Question 39

Question
Which of the following is not qualifying criteria for personnel assigned to nuclear weapons personnel reliability assurance positions?
Answer
  • Individual must be a U.S. Citizen
  • Individual has a security clearance eligibility in accordance with the position
  • Individual is subject to a periodic reinvestigation every three years
  • Individual must be continuous evaluated

Question 40

Question
Copies of personnel security investigative reports must be destroyed by DoD recipient organizations, within how many days following completion of the necessary personnel security determination?
Answer
  • 30 Days
  • 45 Days
  • 60 Days
  • 90 Days

Question 41

Question
Which of the following limitations is true regarding Limited Access Authorization (LAA) to non-U.S. citizens?
Answer
  • LAAs shall only be granted access at the Secret and Confidential levels.
  • A favorably completed and adjudicated Tier 3 or National Agency Check with Local Agency Check (NACLC).
  • An LAA is the same as a security clearance eligibility.
  • Access to classified information Is not limited to a specific program or project.

Question 42

Question
___________ is the security system performance goal of immediate indication of deliberate attempts, security probing and warning for inadvertent or mistaken intention is an example of which system security capability?
Answer
  • Deterrence
  • Detect
  • Delay
  • Distract

Question 43

Question
Which of the following would be considered a public safety crime?
Answer
  • Theft of ammunition shipment for the purpose of criminal or gang related activity.
  • Theft of sensitive, proprietary information relating to US aerospace and defense technologies.
  • Deliberate destruction of DoD assets or interruption of normal operations.
  • Theft of an item and use of it outside of its intended purpose or without permission.

Question 44

Question
Two security professionals – Paul and Ashley – are discussing the security procedures for visits and meetings. Paul says visits must serve a specific U.S. Government purpose. Ashley says DoD Components should, as a minimum, establish procedures that include verification of the identity, personnel security clearance, access (if appropriate), and need-to-know for all visitors. Who is correct?
Answer
  • Paul is correct.
  • Ashley is correct.
  • Paul and Ashley are both correct.
  • Paul and Ashley are both incorrect.

Question 45

Question
Executive Order 12829, signed in January 1993, mandated that which of the following entities be responsible for implementing and monitoring the National industrial Security Program (NISP)?
Answer
  • Director of the Information Security Oversight Office (ISOO)
  • Secretary of Defense
  • National Security Council (NSC)
  • Director, Defense Security Services (DSS)

Question 46

Question
Which of the following describes a Special Access Program (SAP) that is established to protect sensitive research, development, testing and evaluation, modification, and procurement activities?
Answer
  • Research and Technology SAP
  • Operations and Support SAP
  • Acquisition SAP
  • Intelligence SAP

Question 47

Question
Which type of briefing is used to identify security responsibilities, provide a basic understanding of DoD security policies, and explain the importance of protecting government assets?
Answer
  • Indoctrination Briefing
  • Original Classification Authority (OCA) Briefing
  • Foreign Travel Briefing
  • Debriefing

Question 48

Question
Which type of briefing is used to reinforce the information provided during the initial security briefing and to keep cleared employees informed of appropriate changes in security regulations?
Answer
  • Annual Refresher Briefings
  • Indoctrination Briefings
  • Attestation Briefings
  • Courier Briefings

Question 49

Question
Which step of the Operations Security (OPSEC) process would be applied when conducting exercises, red teaming and analyzing operations?
Answer
  • Conduct a Risk Assessment
  • Apply OPSEC Countermeasures
  • Conduct a Threat Analysis
  • Conduct a Vulnerability Analysis

Question 50

Question
Which step of the Operations Security (OPSEC) process would be applied when identifying potential adversaries and the associated capabilities and intentions to collect, analyze, and exploit critical information and indicators?
Answer
  • Conduct a Vulnerability Analysis
  • Conduct a Threat Analysis
  • Conduct a Risk Assessment
  • Apply OPSEC Countermeasures

Question 51

Question
Who’s responsibility is it during the categorize steps to identify a potential impact (low, moderate, or high) due to loss of confidentiality, integrity, and availability if a security breach occurs?
Answer
  • Information System Owner (ISO)
  • Information Owner (IO)
  • Information System Security Manager (ISSM)
  • Authorizing Official (AO)

Question 52

Question
Which of the following is NOT a category of Information Technology (IT)?
Answer
  • Platform Information Technology (PIT)
  • Information Technology Services
  • Information Technology Products
  • Information Technology Applications

Question 53

Question
What step within the Risk Management Framework (RMF) does system categorization occur?
Answer
  • Categorize Information System
  • Select Security Controls
  • Implement Security Controls
  • Assess Security Controls
  • Authorize
  • Monitor Security Controls

Question 54

Question
At what step of the Risk Management Framework (RMF) would you develop a system-level continuous monitoring strategy?
Answer
  • Categorize Information System
  • Select Security Controls
  • Implement Security Controls
  • Assess Security Controls
  • Authorize
  • Monitor Security Controls

Question 55

Question
One responsibility of the Information System Security Manager (ISSM) during Step 6 of the Risk Management Framework (RMF) is:
Answer
  • Review and approve the security plan and system-level continuous monitoring strategy developed and implemented by the DoD Components.
  • Monitor the system for security relevant events and configuration changes that affect the security posture negatively.
  • Determine and documents a risk level in the Security Assessment Report (SAR) for every non-compliant security control in the system baseline.
  • Coordinate the organization of the Information System (IS) and Platform Information Technology (PIT) systems with the Program Manager (PM)/System Manager (SM), Information System Owner (ISO), Information Owner (IO), mission owner(s), Action Officer (AO) or their designated representatives.
Show full summary Hide full summary

Want to create your own Quizzes for free with GoConqr? Learn more.

Similar

PHYSEC Quiz
Casey Neville
CYBER Quiz
Casey Neville
INDUSTRIAL Quiz
Casey Neville
PERSEC Quiz
Casey Neville
Physical Geography
clongworth25
Key Biology Definitions/Terms
jane zulu
GCSE AQA Biology 3 Kidneys & Homeostasis
Lilac Potato
CHARACTERS IN OF MICE AND MEN
jessicasusanevans
4 Lesson Planning Tips for Teachers
Micheal Heffernan
World War I
Lydia Klein
Salesforce Admin 201 Exam Chunk 3 (66-90)
Brianne Wright
Browse Library