SFPC 4

Question

ISCM strategy at this level is focused on ensuring that all system-level security controls are implemented correctly, operate as intended, produce the desired outcome with respect to meeting the security requirements for the system, and continue to be effective over time.

Answer 1

Ensuring that adjustments to the system configuration do not adversely affect the security of the information system

Answer 2

Establishing configuration baselines and tracking, controlling, and managing aspects of business development

Answer 3

Ensuring that adjustments to the system configuration do not adversely affect the organizations operations

Answer 4

Establishing a firm schedule for security patch updates every six months

Answer 5

Configuration Change Control

Answer 6

Access Restrictions for Change

Answer 7

Configuration Settings

Answer 8

Least Functionality

Answer 9

Software Usage Restrictions

Answer 10

User-Installed Software

Answer 11

Configuration Change Control

Answer 12

Access Restrictions for Change

Answer 13

Configuration Settings

Answer 14

Least Functionality

Answer 15

Software Usage Restrictions

Answer 16

User-Installed Software

Answer 17

Configuration Change Control

Answer 18

Access Restrictions for Change

Answer 19

Configurations Settings

Answer 20

Least Functionality

Answer 21

Software Usage Restrictions

Answer 22

User-Installed Software

Answer 23

Configuration Change Control

Answer 24

Access Restrictions for Change

Answer 25

Configuration Settings

Answer 26

Least Functionality

Answer 27

Software Usage Restrictions

Answer 28

User-Installed Software

Answer 29

The NISP ensures that requirements for continuous monitoring are undertaken by the government before any classified work may begin

Answer 30

The NISP ensures the partnership between the federal government and private industry places the burden of risk on the subcontractors.

Answer 31

The NISP ensures that restrictions on continuous monitoring activities are in place before any classified work may begin.

Answer 32

The NISP ensures that monitoring requirements, restrictions, and safeguards that industry must follow are in place before any classified work may begin.

Answer 33

The configuration management process ensures that patches are applied on systems once a year as a continuous monitoring activity.

Answer 34

Implementing information system changes almost always results in some adjustment to the system configuration that requires continuous monitoring of security controls.

Answer 35

The configuration management process ensures that a schedule for continuous monitoring is in place for anticipated future interconnected systems.

Answer 36

Risk management in continuous monitoring ensures that information security solutions are broad-based, consensus-driven, and address the ongoing needs of and risks to the government and industry.

Answer 37

Cybersecurity requirements are managed through the risk management framework while continuous monitoring activities address password changes and Help Desk tasks.

Answer 38

Risk management facilitates an organization-wide vision for security but does not impact continuous monitoring daily and weekly activities.

Answer 39

Conducting frequent audits

Answer 40

Not relying on firewalls to protect against all attacks

Answer 41

Disseminating a fillable form to information system owners to log suspicious activity

Answer 42

Reporting intrusion attempts

Answer 43

Tier 2 ISCM strategies focus on ensuring that all system-level security controls are implemented correctly, operate as intended, produce the desired outcome with respect to meeting the security requirements for the system, and continue to be effective over time.

Answer 44

Tier 2 ISCM strategies focus on the controls that address the establishment and management of the organization’s information security program, including establishing the minimum frequency with which each security control or metric is to be assessed or monitored.

Answer 45

Tier 2 ISCM strategies focus on high-level information security governance policy as it relates to risk to the organization as a whole, to its core missions, and to its business functions.

Answer 46

Counterintelligence and cybersecurity personnel test automated tools and make recommendations to industry and DoD organizations.

Answer 47

Through aggregation and analysis of Suspicious Network Activity via cyber intrusion, viruses, malware, backdoor attacks, acquisition of user names and passwords, and similar targeting, the DSS CI Directorate produces and disseminates reports on trends in cyberattacks and espionage.

Answer 48

Security auditing is a fundamental activity in continuous monitoring in order to schedule automatic security maintenance.

Answer 49

Security auditing is a fundamental activity in continuous monitoring in order to ensure access restriction controls are in place on an information system.

Answer 50

Security auditing is a fundamental activity in continuous monitoring in order to determine what activities occurred and which user or process was responsible for them on an information system.

Answer 51

The RMF process provides a flexible approach with decision-making at Tier 3.

Answer 52

The RMF process ensures that business process decisions can override user information system concerns.

Answer 53

The RMF process emphasizes continuous monitoring and timely correction of deficiencies.

Answer 54

Budgeting and cost controls not operating as intended

Answer 55

Unsuccessful accesses to security-relevant objects and directories

Answer 56

Successful and unsuccessful logons/logoffs

Answer 57

Denial of access for excessive logon attempts

Answer 58

Keep up-to-date inventories

Answer 59

Interoperability and operational reciprocity

Answer 60

Force users to use encryption

Answer 61

Program Manager/System Manager

Answer 62

Information System Owner

Answer 63

Information System Security Officer

Answer 64

User Representative

Answer 65

Select Control Panel from the Windows Start menu and then select the Security Event Log

Answer 66

Select Control Panel from the Windows Start menu and then select Windows Log

Answer 67

Select Control Panel from the Windows Start menu and then select the Administrative Tools link

Answer 68

Select Control Panel from the Windows Start menu and then select the System and Security link

Answer 69

Step 1, categorize the system

Answer 70

Step 4, assess the controls

Answer 71

Step 5, authorize the information system

Answer 72

Step 6, monitor the security controls

Answer 73

Counterintelligence and cybersecurity personnel ensure the contractor’s Information System Security Manager checks for unusual activity on a classified system at least once during the contract period of performance.

Answer 74

Counterintelligence and cybersecurity personnel share and report unauthorized accesses attempts, denial of service attacks, exfiltrated data, and other threats/vulnerabilities.

Answer 75

Counterintelligence and cybersecurity personnel ensure the contractor’s Information System Security Officer checks for unusual activity on a classified system at least once during the contract period of performance.

Answer 76

Step 1: Define an ISCM strategy

Answer 77

Step 2: Establish an ISCM program

Answer 78

Step 3: Implement an ISCM program

Answer 79

Step 4: Analyze data and report findings

Answer 80

Step 5: Respond to findings

Answer 81

Step 6: Review and update the monitoring program

Answer 82

Baseline Configuration

Answer 83

Least Functionality

Answer 84

Software Usage Restrictions

Answer 85

Information System Component Inventory

Answer 86

Audit trail contents must be protected against unauthorized access, modification, or deletion.

Answer 87

Audit trail analysis and reporting of security events must be performed annually.

Answer 88

Audit trail contents should be made accessible to the information system user upon written request.

Answer 89

Audit trail analysis and reporting of security events must be performed at least weekly.

Answer 90

The patch management process integrates with SecCM once a year when system maintenance is performed.

Answer 91

The patch management process integrates with SecCM on a regular basis when restrictions must be lifted so that all system users can download software updates.

Answer 92

The patch management process integrates with SecCM when performing a Security Impact Analysis to determine whether unanticipated effects from a patch resulted in a change to existing security controls.

Answer 93

Phase 1: Planning

Answer 94

Phase 2: Identifying and Implementing Configurations

Answer 95

Phase 3: Controlling Configuration Changes

Answer 96

Phase 4: Monitoring

Answer 97

New, enhanced, corrected, or updated hardware and software capabilities

Answer 98

Changing business functions

Answer 99

Help Desk tickets

Answer 100

Patches for correcting software flaws and other errors to existing components

Answer 101

New security threats

Answer 102

National Industrial Security Program Operating Manual (NISPOM), Chapter 1.

Answer 103

National Industrial Security Program Operating Manual (NISPOM), Chapter 3.

Answer 104

National Industrial Security Program Operating Manual (NISPOM), Chapter 5.

Answer 105

National Industrial Security Program Operating Manual (NISPOM), Chapter 8.

Answer 106

Tier 1 - the Organization level

Answer 107

Tier 2 - the Mission/Business Process level

Answer 108

Tier 3 - the Information System level

Answer 109

Audit logs are essential in continuous monitoring because they record system activity, application processes, and user activity.

Answer 110

Audit logs are essential in continuous monitoring because they will automatically defragment an information system to increase its speed and response time to user input.

Answer 111

Audit logs are essential in continuous monitoring because they can be used to detect security violations, performance problems, and flaws in applications.

Answer 112

Least Functionality

Answer 113

User-Installed Software

Answer 114

Baseline Configuration

Answer 115

Access Restrictions for Change

Answer 116

Tier 1 ISCM strategies focus on assessing and monitoring hybrid and common controls implemented at the system level.

Answer 117

Tier 1 ISCM strategies focus on how the organization plans to assess, respond to, and monitor risk as well as the oversight required to ensure that the risk management strategy is effective.

Answer 118

Tier 1 ISCM strategies focus on how ensuring that all system-level security controls (technical, operational, and management controls) are implemented correctly and operate as intended.

Answer 119

Audit trail contents must be protected against unauthorized access, modification, or deletion.

Answer 120

Audit trail contents should be made accessible to the information system user upon written request.

Answer 121

Audit records must address individual accountability with unique identification and periodic testing of the security posture by the ISSO or ISSM.

Answer 122

The RMF process provides a flexible approach to decision-making at Tier 3.

Answer 123

The RMF process ensures traceability and transparency across all levels of the organization.

Answer 124

The RMF process ensures that business process decisions can override user information system concerns.

Answer 125

Determining whether a contractor should be allowed to monitor and assess their classified network activity.

Answer 126

Determining whether a contractor audit trail is a necessary indicator cyber defense

Answer 127

Addressing risks from an information system and platform information technology system perspective to ensure a process for analyzing threats and vulnerabilities is in place, defining the impact, and identifying countermeasures.

Answer 128

Security event log

Answer 129

Setup event log

Answer 130

System event log

Answer 131

Forwarded event log

Answer 132

The patch management process integrates with SecCM on a regular basis when restrictions must be lifted so that all system users can download software updates.

Answer 133

The patch management process integrates with SecCM once a year when system maintenance is performed.

Answer 134

The patch management process integrates with SecCM when updating the baseline configuration to the current patch level and then testing and approving patches as part of the configuration change control process.

Answer 135

A well-defined configuration management process that integrates continuous monitoring ensures a firm schedule for security patch updates once a year.

Answer 136

A well-defined configuration management process that integrates continuous monitoring ensures the system baseline will not change.

Answer 137

A well-defined configuration management process that integrates continuous monitoring ensures that the required adjustments to the system configuration do not adversely affect the security of the information system.

Answer 138

Investigation of the reasoning behind access restrictions at all levels of the organization.

Answer 139

Investigation into events of unauthorized downloads or uploads of sensitive data; unexplained storage of encrypted data; and unauthorized use of removable media or other transfer devices.

Answer 140

Investigation into physical security breaches at the facility.

Answer 141

Continuous monitoring capabilities can detect transmission of information to foreign IP addresses but cannot determine whether classification markings have been removed.

Answer 142

Continuous monitoring capabilities enable security professionals to make quick adjustments to access restriction controls.

Answer 143

Continuous monitoring capabilities and tools ensure cybersecurity products operate in a net-centric manner to enhance the exchange of data and shared security policies.

Answer 144

Offer of financial assistance by a foreign national or stranger

Answer 145

Unreported or frequent foreign travel

Answer 146

Termination notice to go work for a competing company

Answer 147

Contact with an individual who is suspected of being associated with foreign intelligence

Answer 148

a person who works overtime

Answer 149

a person with access to information who unknowingly reveals more than they should to persons without a need to know

Answer 150

a person with access to multiple Special Access Programs

Answer 151

a person who discusses their job with co-workers within the Sensitive Compartmented Information Facility (SCIF)

Answer 152

National security

Answer 153

Your company’s proprietary and research information

Answer 154

All of the above

Answer 155

Drugs or alcohol

Answer 156

Financial problems

Answer 157

All of the above

Answer 158

Unsolicited requests for information

Answer 159

Solicitation and marketing of services

Answer 160

Cyber Attacks

Answer 161

International conventions, seminars, and exhibits

Answer 162

All of the above

Answer 163

Foreign officials claim they already knew about a program after the program was made public

Answer 164

Foreign officials reveal details they should not have known

Answer 165

An adversary conducts activities with precision that indicates prior knowledge

Answer 166

Media reports on current operations in the Middle East

Answer 167

Inputting falsified corrupted data

Answer 168

Introducing malicious code such as a virus, logic, or Trojan horse

Answer 169

All of the above

Answer 170

Illegal downloads

Answer 171

Weak passwords

Answer 172

Disgruntled or Co-opted employee

Answer 173

All of the above

Answer 174

Report all security infractions, violations, or suspicious activity to your supervisor and the Office of Security

Answer 175

Never log onto your computer network outside of normal working hours

Answer 176

Follow all security rules and regulations

Answer 177

Never gossip about any of your coworkers

Answer 178

Show up to work on time every day

Answer 179

Call the FBI Hot Line

Answer 180

Report directly to your CI or Security Office

Answer 181

Start recording their conversations to gather evidence

Answer 182

Discuss situation with others to get second opinion

Answer 183

An unidentified press release

Answer 184

A lucky guess

Answer 185

A paid source

Answer 186

A Security Anomaly

Answer 187

Solicitation and Marketing of Services

Answer 188

International conventions, seminars, and exhibits

Answer 189

Elicitation

Answer 190

Visits to Department of Defense (DoD) or contractor facilities

Answer 191

Industrial Security Facilities Database (ISFD)

Answer 192

Electronic Facility Clearance (e-FCL) System

Answer 193

Joint Personnel Adjudication System (JPAS)

Answer 194

Electronic Questionnaires for Investigations Processing (e-QIP)

Answer 195

Industrial Security Facilities Database (ISFD)

Answer 196

Electronic Facility Clearance (e-FCL) System

Answer 197

Joint Personnel Adjudicatoin System (JPAS)

Answer 198

Electronic Questionnaires for Investigations Processing (e-QIP)

Answer 199

It should be downgraded

Answer 200

It should be revoked

Answer 201

It should be terminated

Answer 202

No action is necessary

Answer 203

The branch facility

Answer 204

Both the home office facility and the branch facility

Answer 205

The home office facility

Answer 206

It should be revoked

Answer 207

It should be downgraded

Answer 208

It should be administratively terminated

Answer 209

No action is necessary

Answer 210

Limited liability company

Answer 211

Multiple facility organization

Answer 212

Parent-Subsidiary

Answer 213

Partnership

Answer 214

Government Contracting Activity

Answer 215

Industrial Security Representative

Answer 216

Exclusion resolution

Answer 217

Fingerprint card

Answer 218

A division or branch within a multiple facility organization

Answer 219

A partnership

Answer 220

A limited liability corporation

Answer 221

A cleared parent company

Answer 222

The government contracting activity sponsoring the facility security clearance request

Answer 223

There is no need to provide a CAGE code for any party in the sponsorship letter

Answer 224

The cleared prime contractor sponsoring the facility security clearance request and the uncleared contractor being sponsored, if it has one

Answer 225

Sole proprietorship

Answer 226

Corporation

Answer 227

Limited liability company

Answer 228

DD Form 441

Answer 229

DD Form 254

Answer 230

Only the subsidiary must execute DD Form 441.

Answer 231

Only the parent must execute DD Form 441.

Answer 232

Both the parent and the subsidiary must execute their own DD Form 441.

Answer 233

Because final eligibility determinations for all key management personnel have not yet been completed

Answer 234

Because all required documentation has not yet been completed

Answer 235

Because all FOCI factors have not yet been favorably adjudicated

Answer 236

The parent must obtain a facility security clearance at a level equal to the level at which the subsidiary is cleared.

Answer 237

The parent will be formally excluded from all access to classified information.

Answer 238

No action is required.

Answer 239

No, because the new FSO is already cleared, a report is not required

Answer 240

No, this does not need to be reported

Answer 241

Yes, this is a reportable change

Answer 242

No, the sponsoring activity is responsible for all costs associated with the facility security clearance process.

Answer 243

No, there is no direct cost to the contractor for being processed for a facility security clearance

Answer 244

Yes, the contractor must pay the government for services rendered during the facility security clearance request process.

Answer 245

No, the sale of stocks is never a reportable change

Answer 246

No, this does not need to be reported

Answer 247

Yes, this is a reportable change

Answer 248

Sponsorship Letter

Answer 249

Business structure

Answer 250

DD Form 441

Answer 251

No. All the involved key management personnel must have final personnel security clearance determinations in order for the facility to be issued a final facility security clearance.

Answer 252

Yes. A final facility security clearance may be issued as long as all the involved key management personnel have interim personnel security clearance determinations.

Answer 253

Yes. Personnel security clearance determinations for key management personnel are not required in order to be issued a facility security clearance.

Answer 254

The contractor

Answer 255

The government

Answer 256

Either the government or the contractor

Answer 257

Sponsorship, bona fide classified procurement need, business structure

Answer 258

Legal entity organized under U.S. laws, company has reputation for integrity, FOCI factors sufficiently managed

Answer 259

Sponsorship, DD Form 441, key management personnel

Answer 260

Contract Officer

Answer 261

FCB Security Specialist

Answer 262

Industrial Security Representative

Answer 263

Invalidation of a facility security clearance does not prevent a contractor from receiving new contracts.

Answer 264

Invalidation of a facility security clearance is a final terminating action revoking all privileges associated with an active clearance.

Answer 265

Invalidation of a facility security clearance is an interim measure allowing a contractor to correct negative security circumstances.

Answer 266

History assessment

Answer 267

Operations assessment

Answer 268

Intent assessment

Answer 269

Collection capabilities assessment

Answer 270

Information

Answer 271

Operational

Answer 272

Vulnerability

Answer 273

Regressive

Answer 274

What undesirable events regarding a particular asset concern the asset owner?

Answer 275

Could significant damage to national security or loss/injury to human life occur as a result of this event?

Answer 276

What critical/valuable equipment is located at this site? Why is it critical or valuable?

Answer 277

Where are the assets located?

Answer 278

Written Procedure

Answer 279

Undesirable event

Answer 280

Effectiveness

Answer 281

To identify potential countermeasures for reducing an asset’s vulnerabilities and overall risk to the asset

Answer 282

To identify the value of assets and the degree of impact if they are damaged or lost

Answer 283

To identify vulnerabilities

Answer 284

Last testing of the vulnerability

Answer 285

Effectiveness of countermeasures

Answer 286

Intent Assessment Chart

Answer 287

Collection Capability Assessment Chart

Answer 288

Threat Assessment Summary Chart

Answer 289

Countermeasure Analysis Chart

Answer 290

To what degree does the option delay, deter, detect, defend, or destroy?

Answer 291

Is the option available from several contractors?

Answer 292

How does the asset value compare to proposed cost of protection?

Answer 293

What are the methods an adversary might use to destroy an asset?

Answer 294

Vulnerabilities

Answer 295

Countermeasures

Answer 296

countermeasures

Answer 297

vulnerabilities

Answer 298

What is the potential for an event to take place?

Answer 299

What is the capability of a specific threat?

Answer 300

What is the impact of an undesirable event?

Answer 301

What is the level of weakness at the site?

Answer 302

countermeasures

Answer 303

procedures

Answer 304

Intended plans that may pose a threat to an asset.

Answer 305

The identification of an asset’s threats.

Answer 306

Any individual, group, organization, or government that conducts activities, or has the intention and capability to conduct activities detrimental to assets.

Answer 307

Any indication, circumstance, or event with the potential to cause the loss of, or damage to an asset.

Answer 308

return, impact, threat, vulnerability

Answer 309

risk, impact, threat, vulnerability

Answer 310

return, importance, threat, vulnerability

Answer 311

risk, importance, threat, vulnerability

Answer 312

Has a weakness

Answer 313

Is of value

Answer 314

Requires protection

Answer 315

Has the adversary attacked or exploited assets and personnel before?

Answer 316

Does the adversary have the weapons or tools for exploiting or attacking an asset?

Answer 317

Has the adversary been suspected of attacking or exploiting assets?

Answer 318

Might some foreseeable event cause the adversary to attempt an attack in the future?

Answer 319

The terrorist perspective that feels killing innocent people is morally justified to achieve objectives.

Answer 320

The victim perspective that sees terrorist acts as criminal and immoral.

Answer 321

The military perspective that feels that all terrorist events are evil and warrant retaliatory action.

Answer 322

The general public perspective that either supports or opposes the terrorist causes.

Answer 323

As a recognized religion or radical offshoot

Answer 324

Independently, but receives some support from governments

Answer 325

Primarily by the support of a state or country

Answer 326

Autonomously, receiving no support from any governments

Answer 327

Operating overtly

Answer 328

Being rurally based

Answer 329

Being highly mobile

Answer 330

Considering tactical success as mission success

Answer 331

External training

Answer 332

Revolutionary training

Answer 333

Militaristic training

Answer 334

Internal training

Answer 335

Having positive contact with the captor

Answer 336

Accepting the situation as not long-term since authorities will come to the rescue

Answer 337

Seeing the captor's human qualities

Answer 338

Upon detonation will produce mass casualties but will not penetrate a building

Answer 339

Is used by terrorists to frighten people and make the land around the explosion unusable for a long period of time

Answer 340

Combines conventional explosives with radioactive materials

Answer 341

Awareness, Prevention, and Deterrence

Answer 342

Mitigation, Reaction, and Destruction

Answer 343

Detection, Protection, and Action

Answer 344

A Vulnerability Assessment should focus only on WMD.

Answer 345

It is an annual requirement to receive a Higher Headquarters Vulnerability Assessment.

Answer 346

The Commander uses a Vulnerability Assessment to determine the susceptibility of assets to attack from threats.

Answer 347

All of the above.

Answer 348

Vulnerability

Answer 349

Asset Criticality

Answer 350

All of the above

Answer 351

The ATO and the Installation Commander

Answer 352

Antiterrorism Executive Committee

Answer 353

The Threat Working Group

Answer 354

Threat delay

Answer 355

Threat detection

Answer 356

Threat response

Answer 357

All of the above

Answer 358

Aesthetics

Answer 359

Jersey barriers

Answer 360

Specify design criteria for incorporating threat-based AT requirements

Answer 361

Provide minimum construction requirements for new construction and major renovations

Answer 362

Mandate Services and/or Agencies establish AT guidelines for new construction to counter terrorism threat capabilities

Answer 363

Is written from the Service or Agency level down to the Installation level for permanent operations or locations

Answer 364

Contains all of the specific measures that need to be taken in order to establish and maintain an AT program

Answer 365

Is incorporated in operation orders for temporary operations or exercises

Answer 366

Administration and Logistics

Answer 367

Responsible for making decisions regarding requirement funding

Answer 368

Responsible for continuously documenting funding requirements

Answer 369

The expert within an organization for generating, prioritizing, and appropriately documenting AT requirements

Answer 370

Need to fund

Answer 371

Should fund

Answer 372

The amount of money the U.S. Government offers for hostages

Answer 373

The victims' nationality

Answer 374

The victims' value to their families

Answer 375

The victims' financial resources

Answer 376

The victim's self-defense and survival skills

Answer 377

The victim's personal wealth

Answer 378

The number of captors

Answer 379

Whether or not the captors are armed

Answer 380

Confiscating a hostage's personal items, such as a watch or wallet

Answer 381

Isolating a hostage from any human contact

Answer 382

Providing a hostage with regular meals

Answer 383

Taking all of a hostage's life quality aids, such as glasses or hearing aids

Answer 384

Receiving insufficient nourishment

Answer 385

Perceiving the captor as a victim of circumstance versus an aggressor

Answer 386

Being belligerent towards the captor

Answer 387

Identifying with the captor

Answer 388

The hostages become combative with the captors.

Answer 389

Authorities may achieve a successful negotiation with the captors resulting in the release of the hostage.

Answer 390

Hostages remain uncooperative with the captors.

Answer 391

Themselves

Answer 392

U.S. Government

Answer 393

The amount of sensitive information the Service member has.

Answer 394

A potential captor's assessment of the Service member's usefulness.

Answer 395

The Service member's tenure in the military.

Answer 396

The Service member's susceptibility to capture.

Answer 397

Have been released

Answer 398

Are on assignment

Answer 399

Have been captured

Answer 400

All of the above

Answer 401

Hide materials indicating affiliation with the U.S. Government for leverage.

Answer 402

Resist panicking.

Answer 403

Anticipate the captor's efforts to create confusion.

Answer 404

Catch the captor off guard in hopes of escaping.

Answer 405

Vary their voice levels so their captors do not hear them speaking.

Answer 406

Maintain a regular exercise routine.

Answer 407

Remain realistic about their situation and not make future plans for themselves.

Answer 408

Remain constantly alert for any sign of being rescued.

Answer 409

Prepare to escape the situation as soon as there is an opportunity to do so.

Answer 410

Drop to the floor.

Answer 411

Remain still until rescuers provide instructions.

Answer 412

Motion to rescuers so that they are easily identified.

Answer 413

Limiting contact with the press.

Answer 414

Refraining from making public statements about the captor.

Answer 415

Speaking openly about the rescue with reporters.

Answer 416

Being accessible to the press to discuss being held hostage and rescued.

Answer 417

Refusing to assist the captor

Answer 418

Losing touch with reality

Answer 419

Hindering rescue efforts

Answer 420

Suffering from long-term emotional instability

Answer 421

During capture, Service members should resist their potential captors in an effort to break free.

Answer 422

As a hostage, Service members should not, under any circumstances, support or encourage their captors.

Answer 423

Service members on assignment in an area prone to terrorist activity shall follow the appropriate counter-terrorism measures.

Answer 424

As a hostage, Service members should accept release regardless of the consequences of such action.

Answer 425

The group is primarily supported by a country or state

Answer 426

The group is usually an insurgent movement

Answer 427

Activities are conducted at the direction of the state

Answer 428

The group may be an element of the state's security organization

Answer 429

Are considered to be political extremists

Answer 430

Have suicidal members

Answer 431

Have a charismatic leader who preaches a form of exclusivity

Answer 432

Consist of young members, generally between 19 and 35 years old

Answer 433

Highly mobile

Answer 434

Operate covertly

Answer 435

Urban based

Answer 436

Militarily stronger than their opposition

Answer 437

To achieve a chaotic atmosphere, a terrorist group will disrupt lines of communication.

Answer 438

Terrorist groups will encourage foreign investments to boost and strengthen their country’s economy.

Answer 439

Attacks against a state government’s security forces are used to erode public confidence.

Answer 440

Major acts or a successful terrorist campaign can attract additional support for the group’s cause.

Answer 441

Satisfying vengeance

Answer 442

Turning the tide in a Guerrilla War

Answer 443

Causing an overreaction

Answer 444

Release of incarcerated comrades

Answer 445

Collects target-specific information

Answer 446

Is comprised of people who conduct kidnappings

Answer 447

Recruits new members

Answer 448

Provides OPSEC

Answer 449

Internal training

Answer 450

External training

Answer 451

Survival training

Answer 452

Communications training

Answer 453

Obtaining money and equipment

Answer 454

Release of imprisoned comrades

Answer 455

Creating a safe environment for their people

Answer 456

Influencing government decisions, legislations, or elections

Answer 457

Goals of the terrorist group

Answer 458

The security in the group's operating area

Answer 459

The abilities of the group's communication network

Answer 460

Media publicity of the group

Answer 461

External training

Answer 462

Internal training

Answer 463

Revolutionary training

Answer 464

Militaristic training

Answer 465

Terrorist operations are relatively easy to execute because they are relatively easy to command, control, and support.

Answer 466

To ensure a sound operation, terrorists rehearse the operation in an environment mirroring the target location.

Answer 467

Terrorists select multiple targets as potential locations for the actual operation.

Answer 468

Terrorist operations are designed to impact only direct victims.

Answer 469

Phase II: Intelligence Gathering and Surveillance

Answer 470

Phase IV: Pre-Attack Surveillance and Planning

Answer 471

Phase V: Attack Rehearsal

Answer 472

Phase VII: Escape

Answer 473

Phase I: Broad Target Selection

Answer 474

Phase IV: Pre-Attack Surveillance and Planning

Answer 475

Phase V: Attack Rehearsal

Answer 476

Phase VI: Actions on the Objectives

Answer 477

Phase II: Intelligence Gathering and Surveillance

Answer 478

Phase III: Specific Target Selection

Answer 479

Phase IV: Pre-Attack Surveillance and Planning

Answer 480

Phase VI: Actions on the Objectives

Answer 481

Phase I: Broad Target Selection

Answer 482

Phase III: Specific Target Selection

Answer 483

Phase IV: Pre-Attack Surveillance and Planning

Answer 484

Phase VI: Actions on the Objectives

Answer 485

The forceful seizure of an aircraft, its passengers, and cargo.

Answer 486

The unlawful seizure and detainment of a person, where the person is usually held for ransom.

Answer 487

The most common type of terrorist attack because of the relatively low risk of injury to the terrorist.

Answer 488

One of the oldest terrorist tactics, it means murdering someone in a surprise attack, usually with small arms or bombs.

Answer 489

The most common type of terrorist attack because of the relatively low risk of injury to the terrorist.

Answer 490

The unlawful seizure and detainment of a person, where the person is usually held for ransom.

Answer 491

The forceful seizure of an aircraft, its passengers, and cargo.

Answer 492

One of the oldest terrorist tactics, it means murdering someone in a surprise attack, usually with small arms or bombs.

Answer 493

The forceful seizure of an aircraft, its passengers, and cargo.

Answer 494

The unlawful seizure and detainment of a person, where the person is usually held for ransom.

Answer 495

The most common type of terrorist attack because of the relatively low risk of injury to the terrorist.

Answer 496

One of the oldest terrorist tactics, it means murdering someone in a surprise attack, usually with small arms or bombs.

Answer 497

The forceful seizure of an aircraft, its passengers, and cargo.

Answer 498

The unlawful seizure and detainment of a person, where the person is usually held for ransom.

Answer 499

The most common type of terrorist attack because of the relatively low risk of injury to the terrorist.

Answer 500

One of the oldest terrorist tactics, it means murdering someone in a surprise attack, usually with small arms or bombs.

Answer 501

The forceful seizure of a surface vehicle, its passengers, and/or its cargo.

Answer 502

A surprise attack by a small armed force on a previously defined target.

Answer 503

The seizure of a facility to include taking all persons inside hostage.

Answer 504

A sudden attack made from a concealed position on a previously defined target.

Answer 505

The forceful seizure of a surface vehicle, its passengers, and/or its cargo.

Answer 506

A surprise attack by a small armed force on a previously defined target.

Answer 507

The seizure of a facility to include taking all persons inside hostage.

Answer 508

A sudden attack made from a concealed position on a previously defined target.

Answer 509

The forceful seizure of a surface vehicle, its passengers, and/or its cargo.

Answer 510

A surprise attack by a small armed force on a previously defined target.

Answer 511

The seizure of a facility to include taking all persons inside hostage.

Answer 512

A sudden attack made from a concealed position on a previously defined target.

Answer 513

The forceful seizure of a surface vehicle, its passengers, and/or its cargo.

Answer 514

A surprise attack by a small armed force on a previously defined target.

Answer 515

The seizure of a facility to include taking all persons inside hostage.

Answer 516

A sudden attack made from a concealed position on a previously defined target.

Answer 517

Environmental Destruction

Answer 518

Threats/Hoaxes

Answer 519

Environmental Destruction

Answer 520

Threats/Hoaxes

Answer 521

Take Action

Answer 522

Immediately raise hands and spread fingers

Answer 523

Ask for help

Answer 524

Remain calm, and follow officers’ instructions

Answer 525

Point to where the active shooter is

Answer 526

Maliciousness

Answer 527

Disdain of security practices

Answer 528

Carelessness in protecting DoD information

Answer 529

Ignorance of security policy and security practices

Answer 530

All of the above

Answer 531

Sub-Revolutionary

Answer 532

Establishment

Answer 533

Revolutionary

Answer 534

Sub-Revolutionary

Answer 535

Establishment

Answer 536

Revolutionary

Answer 537

Sub-Revolutionary

Answer 538

Establishment

Answer 539

Revolutionary

Answer 540

Significant

Answer 541

A general global threat of possible terrorist activity exists

Answer 542

An increased threat of terrorist activity exists

Answer 543

A terrorist attack has occurred

Answer 544

Intelligence indicates some form of terrorist activity is likely

Answer 545

Rehearse procedures

Answer 546

Frustrate terrorist planning

Answer 547

Replace FPCON

Answer 548

Heighten unit awareness

Answer 549

The terrorist perspective that feels killing innocent people is morally justified to achieve objectives

Answer 550

The victim perspective that sees terrorist acts as criminal and immoral

Answer 551

The general public perspective that either supports or is against the terrorist causes

Answer 552

The military perspective that feels that all terrorist events are evil and warrant retaliatory action

Answer 553

Terrorist Targets

Answer 554

Terrorist History

Answer 555

Terrorist Capabilities

Answer 556

Terrorist Intentions

Answer 557

Identified as High, Significant, Moderate, or Low

Answer 558

Identified as NORMAL, ALPHA, BRAVO, CHARLIE, or DELTA

Answer 559

The random use of various security measures normally employed at higher force protection conditions in order to rehearse procedures

Answer 560

An intelligence community judgment about the likelihood of terrorist attacks on U.S. interests

Answer 561

An intelligence community judgment about the likelihood of terrorist attacks on U.S. interests

Answer 562

Identified as Normal, Alpha, Bravo, Charlie, or Delta

Answer 563

A system of protective measures used by DoD installations and organizations to guard against and deter terrorist attacks

Answer 564

An intelligence community judgment about the likelihood of terrorist attacks on US interests.

Answer 565

Identified as NORMAL, ALPHA, BRAVO, CHARLIE, or DELTA.

Answer 566

Identified as High, Significant, Moderate, or Low.

Answer 567

Releasing imprisoned comrades

Answer 568

Influencing government decisions, legislations, or elections

Answer 569

Obtaining money and equipment

Answer 570

All of the above

Answer 571

The goals of the terrorist group

Answer 572

The security in the group’s operating area

Answer 573

The number of members in the terrorist group

Answer 574

The abilities of the group’s communication network

Answer 575

Terrorist operations are difficult to execute due to the large group of individuals to train and command.

Answer 576

Terrorists select multiple targets as potential locations for the actual operation.

Answer 577

Terrorist operations are always designed on the defensive.

Answer 578

Terrorist rehearse the operation in an environment mirroring the target location or in the target location itself.

Answer 579

For the publicity the situation would generate

Answer 580

Because the victim drives and expensive car

Answer 581

Because the victim is in the wrong place at the wrong time

Answer 582

Because the victim may be a source of trouble otherwise

Answer 583

Motion to rescuers so they are easily identified

Answer 584

Prepare to escape the situation as soon as there is an opportunity to do so

Answer 585

Drop to the floor and remain still until rescuers provide instructions

Answer 586

All of the above

Answer 587

Nerve agents, such as sarin, that interfere with the functioning of the nervous system

Answer 588

Likely to be used in large quantities by terrorist

Answer 589

Substances that are created by plants and animals that are poisonous to humans

Answer 590

Identifiable with the sudden onset of symptoms

Answer 591

There is no antidotal treatment for nerve agent poisoning.

Answer 592

A sudden onset of symptoms is a characteristic of chemical agents.

Answer 593

Terrorists will likely use small quantities of chemical agents in a highly populated area where the potential for exposure is the greatest.

Answer 594

Copying Files

Answer 595

Unusual work hours

Answer 596

Taking short trips

Answer 597

Unexplained affluence

Answer 598

All of the above

	Created by Arthur Casto over 5 years ago

Next up

SFPC 4

Description

Resource summary

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Question 26

Question 27

Question 28

Question 29

Question 30

Question 31

Question 32

Question 33

Question 34

Question 35

Question 36

Question 37

Question 38

Question 39

Question 40

Question 41

Question 42

Question 43

Question 44

Question 45

Question 46

Question 47

Question 48

Question 49

Question 50

Question 51

Question 52

Question 53

Question 54

Question 55

Question 56

Question 57

Question 58

Question 59

Question 60

Question 61

Question 62

Question 63

Question 64

Question 65

Question 66

Question 67

Question 68

Question 69

Question 70

Question 71

Question 72

Question 73

Question 74

Question 75

Question 76