










Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
SAPPC (SECURITY ASSET PROTECTION PROFFESSIONAL CERTIFICATION) CERTIFICATION EXAM | NEWEST ACTUAL ACCURATE EXAM COMPLETE QUESTIONS AND DETAILED VERIFIED ANSWERS GRADED A+ | 100% VERIFIED | 2024 UPDATE!!
Typology: Exams
1 / 18
This page cannot be seen from the preview
Don't miss anything!











What are at least three principle incidents/events required to be reported to DoD counterintelligence (CI) organizations? - โโโ Correct Answer > 1. Espionage
What are the 5 steps to RMF? - โโโ Correct Answer > 1. Identify the critical assets that require protection
Identify the three core components of the Risk Assessment process - โโโ Correct Answer > 1. Asset criticality
List three transmission and transportation requirements that help manage risks to DoD assets - โโโ Correct Answer > 1. Safeguarding
Role: implement and oversee an Industrial Security Program to safeguard classified information with cleared industry under the respective CSA's jurisdiction. What are the five steps in the DoD risk management model - โโโ Correct Answer > 1. Assess Assets
What are the SAP Lifecycle - โโโ Correct Answer > 1. Establishment (is extra protection warranted?)
What are the four levels of vulnerability? - โโโ Correct Answer >
What are the 8 categories of Classified Military Information (CMI)? - โโโ Correct Answer > Category 1 includes information related to the organization, training, and employment of U.S. military forces. Category 2 includes information on specific items of equipment already in production, or in service, and the information necessary for their operation, maintenance, and training. Items on the U.S. Munitions List, or USML, fall within this category. Category 3 includes information related to fundamental theories, design, and experimental investigation into possible military applications; it includes engineering data, operational requirements, concepts, and military characteristics required to adopt the item for production. Development ceases when the equipment has completed suitability testing and has been adopted for use or production. Category 4 includes information related to designs, specifications, manufacturing techniques, and such related information necessary to manufacture materiel and munitions. Category 5 includes information necessary to plan, ensure readiness for, and provide support to the achievement of mutual force development goals or participation in specific combined tactical operations and exercises. It does not include strategic plans and guidance or North American defense information.
(2) Foreign Intelligence entities (3) Cybersecurity Threat What is the security professionals' role in pursuing and meeting cyber security goals? - โโโ Correct Answer > The role of the cyberspace workforce is to "secure, defend, and preserve data, networks, net-centric capabilities, and other designated systems by ensuring appropriate security controls and measures are in place, and taking internal defense actions" (DoDD 8140.01). Per DoDI 8500.01, Cybersecurity (March 14, 2014), personnel occupying cybersecurity positions must be assigned in writing and trained / qualified in accordance with their role. Identify specific baseline administrative and/or physical security controls applicable to each system categorization - โโโ Correct Answer > Controls are identified by enumerating the common controls, identifying those relevant to the categorization level as defined in NIST SP 800-53, potentially tailored by the Authorizing Official, and overlays are applied based on the nature of the system. List three (3) factors for determining whether US companies are under Foreign Ownership Control of Influence (FOCI) - โโโ Correct Answer > 1. Record of economic and government espionage against the US targets.
List at least three individuals in the personnel security investigation (PSI) process and describe their roles - โโโ Correct Answer > Facility Security Officer/Security Manager/Security Officer/Security Coordinator/Security Assistant: initiates, reviews, forwards E-Qip investigation to investigation service provider (ISP) Subject: Completes forms and provides additional information if required Investigator: Conducts PSI Adjudicator: Determines security clearance eligibility Define Delegation of Disclosure Authority Letter (DDL) - โโโ Correct Answer > a document issued by the appropriate designated disclosure authority explaining classification levels, categories, scope, and limitations of information under a DoD Component's disclosure jurisdiction that may be disclosed to a foreign government or international organization Define Arms Export Control Act (AECA) - โโโ Correct Answer > Governs the export of defense articles and services and related technical data and is the legal basis for most international programs.
NDP- 1 (National Disclosure Policy) - โโโ Correct Answer > Contains the procedures for disclosure of U.S. classified military information to foreign governments and international organizations Define General Security of Military Information Agreement (GSOMIA) - โโโ Correct Answer > a government-to-government agreement negotiated through diplomatic channels. It states that each party to the agreement will afford to classified information provided by the other the degree of security protection afforded it by the releasing government. Describe the purpose, intent, and security professional's role in each step of the Command Cyber Readiness Inspections (CCRI) process - โโโ Correct Answer > Defining the scope, the inspection phase, documentation of observations, and reporting findings. A security professional would have responsibilities in defining the scope of the inspection, overseeing the self-inspection and remediation efforts, and coordinating with the CCRI team throughout the remainder of the process List two factors that should be considered when determining position sensitivity - โโโ Correct Answer > (1) Level of access to classified information (2) IT level needed (3) Duties associated with position Explain the process for responding to a "spillage" - โโโ Correct Answer > 1. Detection (implied)