SPēD SFPC: All Areas/ This study set supplements CDSE
Certification Preparatory Tools (CPTs) for the Security
Fundamentals Professional Certification (SFPC). Content
is based on the candidate handbook, CPTs & CDSE
course student guides for SFPC areas of expertise. We
recommend taking CDSE courses: Intro to Industrial
Security, Intro to Information Security, Intro to Physical
Security, Intro to Personnel Security, Intro to DoD
Personnel Security Adjudication, & Special Access
Program (SAP) Overview. This set is not en… 179
Questions with Definitive Solutions.
Principle incident/
events required to be reported to DoD counterintelligence (CI) organizations - Answer:
espionage, sabotage, terrorism, cyber
Page 1 of 26
,Indicators of insider threats - Answer: 1. Failure to report overseas travel or contact with foreign
nationals
2. Seeking to gain higher clearance or expand access outside the job scope
3. Engaging in classified conversations without a need to know
4. Working hours inconsistent with job assignment or insistence on working in private
5. Exploitable behavior traits
6. Repeated security violations
7. Attempting to enter areas not granted access to
8. Unexplainable affluence/living above one's means
9. Anomalies (adversary taking actions which indicate they are knowledgeable to information)
10. Illegal downloads of information/files
Elements that
should be considered in
identifying Critical Program
Information - Answer: Elements which if compromised could:
1. cause significant degradation in mission effectiveness,
2. shorten the expected combat-effective life of the system
3. reduce technological advantage
4. significantly alter program direction; or
Page 2 of 26
, 5. enable an adversary to defeat, counter, copy, or reverseengineer the technology or capability.
asset, threat, vulnerability, risk, countermeasures - Answer: Elements that a
security professional should
consider when assessing and
managing risks to DoD assets
The three categories of
Special Access Programs - Answer: acquisition, intelligence, and operations and support
Three different types
of threats to classified
information - Answer: Insider Threat, Foreign Intelligence Entities (FIE) and Cybersecurity Threat
The concept of an insider threat - Answer: An employee who may represent a threat to
national security. These threats encompass potential espionage, violent acts against the
Government or the nation, and unauthorized disclosure of classified information, including the
vast amounts of classified data available on interconnected United States Government
computer networks and systems.
The purpose of the
Foreign Visitor Program - Answer: To track and approve access by a foreign entity to information
that is classified; and to approve access by a foreign entity to information that is unclassified,
related to a U.S. Government contract, or plant visits covered by ITAR.
Special Access
Program - Answer: A program established for a specific class of
classified information that imposes safeguarding and access requirements that exceed those
normally required for information at the same classification level.
Page 3 of 26
Certification Preparatory Tools (CPTs) for the Security
Fundamentals Professional Certification (SFPC). Content
is based on the candidate handbook, CPTs & CDSE
course student guides for SFPC areas of expertise. We
recommend taking CDSE courses: Intro to Industrial
Security, Intro to Information Security, Intro to Physical
Security, Intro to Personnel Security, Intro to DoD
Personnel Security Adjudication, & Special Access
Program (SAP) Overview. This set is not en… 179
Questions with Definitive Solutions.
Principle incident/
events required to be reported to DoD counterintelligence (CI) organizations - Answer:
espionage, sabotage, terrorism, cyber
Page 1 of 26
,Indicators of insider threats - Answer: 1. Failure to report overseas travel or contact with foreign
nationals
2. Seeking to gain higher clearance or expand access outside the job scope
3. Engaging in classified conversations without a need to know
4. Working hours inconsistent with job assignment or insistence on working in private
5. Exploitable behavior traits
6. Repeated security violations
7. Attempting to enter areas not granted access to
8. Unexplainable affluence/living above one's means
9. Anomalies (adversary taking actions which indicate they are knowledgeable to information)
10. Illegal downloads of information/files
Elements that
should be considered in
identifying Critical Program
Information - Answer: Elements which if compromised could:
1. cause significant degradation in mission effectiveness,
2. shorten the expected combat-effective life of the system
3. reduce technological advantage
4. significantly alter program direction; or
Page 2 of 26
, 5. enable an adversary to defeat, counter, copy, or reverseengineer the technology or capability.
asset, threat, vulnerability, risk, countermeasures - Answer: Elements that a
security professional should
consider when assessing and
managing risks to DoD assets
The three categories of
Special Access Programs - Answer: acquisition, intelligence, and operations and support
Three different types
of threats to classified
information - Answer: Insider Threat, Foreign Intelligence Entities (FIE) and Cybersecurity Threat
The concept of an insider threat - Answer: An employee who may represent a threat to
national security. These threats encompass potential espionage, violent acts against the
Government or the nation, and unauthorized disclosure of classified information, including the
vast amounts of classified data available on interconnected United States Government
computer networks and systems.
The purpose of the
Foreign Visitor Program - Answer: To track and approve access by a foreign entity to information
that is classified; and to approve access by a foreign entity to information that is unclassified,
related to a U.S. Government contract, or plant visits covered by ITAR.
Special Access
Program - Answer: A program established for a specific class of
classified information that imposes safeguarding and access requirements that exceed those
normally required for information at the same classification level.
Page 3 of 26
