Physical security book PSC 2 Final
Exam with Guaranteed Pass Solutions
2025-2026 Updated.
The 4 Identification levels of Assets and Threats - Answer (Crit/High/Med/Low)
The 5 General Types of Vulnerabilities - Answer (Human, Operational, Information, Facility,
Equipment)
The 3 Types of Countermeasures - Answer (Manpower, Equipment, Procedural)
6 Types of DoD Assets - Answer Personnel, Information, Equipment, Facilities, Activities,
Operations) (PIEFAO)
3 Barrier Systems - Answer Active, Passive/Fixed, Natural)
IDS Operational Phases - Answer Detection, Reporting, Dispatch, Response/assessment)
3 Types of Monitoring - Answer Local, Proprietary, Central Station)
5 Threats to DoD Assets and Operations - Answer Criminal, Foreign Intel Activities, Activities,
Natural Disasters, Insider Threat, Terrorists)
5 Types of Plans - Answer Physical Security Plan, Standard Operating Procedure, Post Orders,
COOP, MOA/MOU)
A man-passable opening is anything greater than - Answer 96square
5 Functions of IDS (intrusion detection system) - Answer Deter, Detect, Document, Deny,
Delay)
Differentiate the Types of Access Control Systems - Answer Manual, Manual w/ Automated
Electronics, Automated)
Lock and key 3 types - Answer Combo, Mechanical, Combo Padlock)
,Differentiate Methods of Storage (4 ) - Answer Secure Room, Vaults, SCIF, Security Container)
FPCON (Normal, A, B, C, D) vs Terrorist Threat Levels - Answer Low, Med, significant , High)
Exterior Security Lighting 4 Types - Answer Continuous, Standby, Emergency, Movable)
4 Military Working Dog Capabilities - Answer Seek, Detect, Bite and Hold, Guard a Suspect)
Lighting, weapons, closed circuit TV, fences, and locking mechanisms are examples of what
category of countermeasure? - Answer Equipment
An asset value should be assigned based on the perspective of the ____________. - Answer
Asset Owner
You are the one who decides what constitutes an acceptable level of risk for an organization's
assets. T/F - Answer False
Which of the following questions are used to identify an adversary's intent? (Select all that
apply) - Answer - What are the adversary's goals?
-What level of risk are the adversaries likely to accept?
-Are the adversaries willing to risk getting caught?
After you've completed all other steps, what final chart would you use to summarize and record
your information in order to get the total cost for all countermeasures? - Answer
Countermeasure Analysis Chart
To assist in analyzing threat data, adversaries are typically grouped into all EXCEPT which of the
following categories? - Answer Companies
After completing the vulnerability assessment in the risk management process, the next step is
the ______ assessment. - Answer Risk
After completing the threat assessment step of the risk management process, what step should
be completed next? - Answer Vulnerability assessment
Which of the following is NOT a good interview question for determining an adversary's history?
- Answer Has the adversary been suspected of attacking or exploiting assets?
, Which of the following is one of the five categories of assets? - Answer Facilities
Using the formula R= (I [T x V]) which of the examples below poses the highest risk: - Answer
Asset is assessed as 80 (critical), threat is assessed as .24 (low), and vulnerability is assessed
as .37 (medium).
The risk management process uses four linguistic values: critical, high, medium, and significant.
T/F - Answer False
Poor perimeter lighting and unsecured doors are examples of a/an ______ vulnerability? -
Answer Facility
The formula R=I [T x V] is used for calculating a risk rating. What risk factors do R, I, T, and V
represent? - Answer risk, impact, threat, vulnerability
Awareness programs, two person rules, and passwords are examples of what category of
countermeasure? - Answer Procedural
The time to implement and oversee the countermeasure, the time to prepare for its
implementation, and any time required for follow-up and evaluation have no impact when
determining the cost of a countermeasure. T/F - Answer False
Identify and characterize the specific vulnerabilities that still exist, given the current
countermeasures is a step necessary for ____________ ____________. - Answer regression
analysis
The process in which the costs and benefits of each alternative countermeasure are compared,
and the most appropriate alternative is selected, is called ______. - Answer Cost/benefit
analysis
The degree of difficulty required to exploit a single vulnerability defines what vulnerability
criteria? - Answer Quality
The number of complementary vulnerabilities that can be exploited defines what vulnerability
criteria? - Answer Quantity
Your research shows that specific threat category indicates little or no evidence of capability or
intent with no history of actual or planned threats against the assets. The linguistic rating you
assign to this asset category is ______. - Answer Low
Exam with Guaranteed Pass Solutions
2025-2026 Updated.
The 4 Identification levels of Assets and Threats - Answer (Crit/High/Med/Low)
The 5 General Types of Vulnerabilities - Answer (Human, Operational, Information, Facility,
Equipment)
The 3 Types of Countermeasures - Answer (Manpower, Equipment, Procedural)
6 Types of DoD Assets - Answer Personnel, Information, Equipment, Facilities, Activities,
Operations) (PIEFAO)
3 Barrier Systems - Answer Active, Passive/Fixed, Natural)
IDS Operational Phases - Answer Detection, Reporting, Dispatch, Response/assessment)
3 Types of Monitoring - Answer Local, Proprietary, Central Station)
5 Threats to DoD Assets and Operations - Answer Criminal, Foreign Intel Activities, Activities,
Natural Disasters, Insider Threat, Terrorists)
5 Types of Plans - Answer Physical Security Plan, Standard Operating Procedure, Post Orders,
COOP, MOA/MOU)
A man-passable opening is anything greater than - Answer 96square
5 Functions of IDS (intrusion detection system) - Answer Deter, Detect, Document, Deny,
Delay)
Differentiate the Types of Access Control Systems - Answer Manual, Manual w/ Automated
Electronics, Automated)
Lock and key 3 types - Answer Combo, Mechanical, Combo Padlock)
,Differentiate Methods of Storage (4 ) - Answer Secure Room, Vaults, SCIF, Security Container)
FPCON (Normal, A, B, C, D) vs Terrorist Threat Levels - Answer Low, Med, significant , High)
Exterior Security Lighting 4 Types - Answer Continuous, Standby, Emergency, Movable)
4 Military Working Dog Capabilities - Answer Seek, Detect, Bite and Hold, Guard a Suspect)
Lighting, weapons, closed circuit TV, fences, and locking mechanisms are examples of what
category of countermeasure? - Answer Equipment
An asset value should be assigned based on the perspective of the ____________. - Answer
Asset Owner
You are the one who decides what constitutes an acceptable level of risk for an organization's
assets. T/F - Answer False
Which of the following questions are used to identify an adversary's intent? (Select all that
apply) - Answer - What are the adversary's goals?
-What level of risk are the adversaries likely to accept?
-Are the adversaries willing to risk getting caught?
After you've completed all other steps, what final chart would you use to summarize and record
your information in order to get the total cost for all countermeasures? - Answer
Countermeasure Analysis Chart
To assist in analyzing threat data, adversaries are typically grouped into all EXCEPT which of the
following categories? - Answer Companies
After completing the vulnerability assessment in the risk management process, the next step is
the ______ assessment. - Answer Risk
After completing the threat assessment step of the risk management process, what step should
be completed next? - Answer Vulnerability assessment
Which of the following is NOT a good interview question for determining an adversary's history?
- Answer Has the adversary been suspected of attacking or exploiting assets?
, Which of the following is one of the five categories of assets? - Answer Facilities
Using the formula R= (I [T x V]) which of the examples below poses the highest risk: - Answer
Asset is assessed as 80 (critical), threat is assessed as .24 (low), and vulnerability is assessed
as .37 (medium).
The risk management process uses four linguistic values: critical, high, medium, and significant.
T/F - Answer False
Poor perimeter lighting and unsecured doors are examples of a/an ______ vulnerability? -
Answer Facility
The formula R=I [T x V] is used for calculating a risk rating. What risk factors do R, I, T, and V
represent? - Answer risk, impact, threat, vulnerability
Awareness programs, two person rules, and passwords are examples of what category of
countermeasure? - Answer Procedural
The time to implement and oversee the countermeasure, the time to prepare for its
implementation, and any time required for follow-up and evaluation have no impact when
determining the cost of a countermeasure. T/F - Answer False
Identify and characterize the specific vulnerabilities that still exist, given the current
countermeasures is a step necessary for ____________ ____________. - Answer regression
analysis
The process in which the costs and benefits of each alternative countermeasure are compared,
and the most appropriate alternative is selected, is called ______. - Answer Cost/benefit
analysis
The degree of difficulty required to exploit a single vulnerability defines what vulnerability
criteria? - Answer Quality
The number of complementary vulnerabilities that can be exploited defines what vulnerability
criteria? - Answer Quantity
Your research shows that specific threat category indicates little or no evidence of capability or
intent with no history of actual or planned threats against the assets. The linguistic rating you
assign to this asset category is ______. - Answer Low
