Flashcards

Personnel Security

Address human factor risk

This subtopic covers the management of personnel security risks such as background checks, security awareness training, termination procedures, physical security and access controls for employees, contractors and third-party vendors.

5 minutes 5 Questions

Personnel Security is a critical domain within CISSP that focuses on managing human-related security risks throughout the employee lifecycle. It encompasses the security controls and practices applied to personnel from pre-employment through termination. The process begins with pre-employment scre…

Concepts covered: Personnel Risk Assessment, Security Clearance Process, Non-Disclosure and Confidentiality Agreements, Job Rotation and Separation of Duties, Incident Response and Reporting, Role-based Security Access Control, Background Checks, User Access Reviews, Security Policy Compliance Management, Termination and Offboarding Process

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

Question 1

Which type of investigation is conducted for individuals occupying positions with access to sensitive information, but not classified information?

Periodic Reinvestigation (PRI) Single Scope Background Investigation (SSBI) Phased Periodic Review (PPR) Limited Background Investigation (LBI)

Correct Answer: Limited Background Investigation (LBI)

Limited Background Investigation (LBI) is conducted for individuals occupying positions with access to sensitive information, but not classified information. SSBI is for individuals requiring access to top-secret information, PPR is for lower-level positions, PRI is a follow-up to previous investigations, and PSI is conducted prior to granting access to classified information.

Question 2

What is the purpose of a personnel security incident response plan?

To gather intelligence on the organization's competitors. To provide a coordinated approach to respond to personnel security incidents. To provide psychological counseling to employees who are experiencing personal or professional stress. To conduct a background check on all employees before hiring them.

Correct Answer: To provide a coordinated approach to respond to personnel security incidents.

A personnel security incident response plan is developed to provide a coordinated approach to respond to personnel security incidents. The plan includes procedures for reporting, investigating, and documenting incidents related to personnel security. The plan should also include measures to mitigate the impact of a personnel security incident and steps to prevent similar incidents from occurring in the future.

Question 3

What is the purpose of a security clearance?

To discriminate against employees based on their personal beliefs To grant an individual access to classified information or resources based on their level of trustworthiness and reliability To provide an individual with a false sense of security To restrict an individual's access to all information and resources within the organization

Correct Answer: To grant an individual access to classified information or resources based on their level of trustworthiness and reliability

A security clearance is used to grant an individual access to classified information or resources based on their level of trustworthiness and reliability. The individual must undergo a personnel security investigation and meet certain eligibility criteria before a clearance can be granted.

🎓 Unlock Premium Access

CISSP + ALL Certifications

Personnel Security

CISSP - Personnel Security Example Questions

Question 1

Question 2

Question 3

🎓 Unlock Premium Access