Download SECURITY CONTRACTOR REAL EXAM 2026 UPDATED and more Exams Social Security Law in PDF only on Docsity!
SECURITY CONTRACTOR EXAM
Security Contractor Exam
Instructions: This exam consists of 150 questions. Select the best answer for each question. Read each rationale carefully to understand the reasoning behind the correct answer.
Section 1: Core Security Principles & Ethics (Questions 1 - 20)
1. What is the primary purpose of a security survey? a) To identify potential security weaknesses and threats. b) To determine the budget for the next fiscal year. c) To evaluate employee performance. d) To advertise the security company's services. Answer: a Rationale: A security survey is a systematic on-site examination to identify vulnerabilities, assess risks, and recommend improvements. It is the foundation of a security plan. 2. The concept of "deterrence" in security aims to: a) Physically stop an aggressor. b) Make a potential threat believe that the cost of an attack outweighs the benefit. c) Delay an adversary long enough for response forces to arrive. d) Detect a breach after it has occurred. Answer: b Rationale: Deterrence is about influencing the decision-making of a potential attacker. Visible security measures (guards, cameras, signage) create a perception of risk, discouraging the attempt. 3. A security contractor finds a wallet containing a large sum of cash in a client's parking lot. The most ethical course of action is to: a) Turn it over to the client's security management immediately. b) Keep it, as it was found in a public area.
c) Give it to the first supervisor encountered. d) Wait to see if anyone comes looking for it. Answer: a Rationale: The highest ethical duty is to the client and to the law. Turning found property over to a designated supervisor or security management ensures a documented chain of custody and allows for proper handling to return it to its owner.
4. Which of the following is a key element of the "Security Triangle"? a) Deter, Detect, Delay b) Observe, Orient, Decide, Act (OODA Loop) c) Plan, Organize, Staff, Direct, Control d) Assessment, Planning, Implementation, Evaluation Answer: a Rationale: The Security Triangle (or the three Ds) is a foundational concept: Deter (prevent the attempt), Detect (identify the breach in progress), and Delay (slow the adversary to allow for response). 5. Confidentiality, Integrity, and Availability (CIA) is a model primarily associated with: a) Physical security only b) Information security c) Executive protection d) Supply chain logistics Answer: b Rationale: The CIA triad is the core principle of information security (InfoSec). Confidentiality ensures data is accessible only to authorized users; Integrity ensures data is accurate and unaltered; Availability ensures data is accessible when needed. 6. A security contractor is asked by a client employee to share the access code to a restricted area because the employee "forgot their badge." The contractor should: a) Provide the code, as the employee works there. b) Refuse and report the request to a supervisor. c) Write the code down for the employee. d) Escort the employee but not give the code. Answer: b Rationale: This is a classic social engineering test or a security violation. Access codes and credentials must never be shared. The contractor's duty is to enforce policy and report the incident to their chain of command to protect the client's security. 7. What does "due diligence" mean in a security context? a) The legal duty to act in a timely manner.
b) Manage a large team of guards. c) Make faster and more effective decisions in a dynamic situation. d) Calculate security return on investment (ROI). Answer: c Rationale: Developed by military strategist John Boyd, the OODA Loop emphasizes the importance of speed in the decision-making cycle. The individual or organization that can cycle through these steps faster can disrupt their adversary's decision-making.
12. A key difference between a security contractor and a law enforcement officer is that a security contractor generally: a) Has no authority to make an arrest. b) Enforces private policies and contracts, not public law. c) Works only for the federal government. d) Is not allowed to carry any defensive equipment. Answer: b Rationale: While security contractors may have citizen's arrest powers depending on jurisdiction, their primary role is to enforce the client's rules, regulations, and policies. Law enforcement officers enforce public criminal laws on behalf of the state. 13. What is "situational awareness"? a) The ability to recall policies and procedures. b) The perception and comprehension of elements in an environment, and projection of their future status. c) Knowing the exact location of all security cameras. d) Being able to use a firearm accurately. Answer: b Rationale: Situational awareness is more than just observation. It involves perceiving what is happening (Level 1), understanding what it means (Level 2), and predicting what will happen next (Level 3). It is critical for proactive security. 14. When managing sensitive information, the principle of "least privilege" means: a) Everyone should have access to all information for transparency. b) Individuals should only have access to the information necessary to perform their job functions. c) Only senior management should have any access. d) Access should be granted based on seniority. Answer: b Rationale: Least privilege is a fundamental security principle that minimizes risk. By limiting access to only what is required for a specific role, an organization reduces the potential attack surface and the impact of a credential compromise.
15. A contractor witnesses a fellow contractor engaging in illegal activity. What is the most appropriate first step? a) Ignore it to avoid conflict. b) Confront the contractor directly and aggressively. c) Report it immediately to a supervisor or through the proper chain of command. d) Post about it on social media to warn others. Answer: c Rationale: Security personnel have a heightened ethical and professional duty. Witnessing illegal activity must be reported through the proper channels immediately. Failure to do so could make the witness complicit and violates the duty to the client and employer. 16. The term "force continuum" refers to: a) A list of authorized weapons. b) A model that outlines the escalating levels of force an officer may use in response to a subject's resistance. c) The physical training required for security personnel. d) The legal limits of pursuing a suspect. Answer: b Rationale: The force continuum (or use-of-force model) provides guidelines for how security personnel should match their level of force to the level of resistance or threat they are facing. It is a critical tool for de-escalation and legal defense. 17. Which of the following is considered a "soft skill" essential for security contractors? a) Expert-level firearms proficiency. b) Advanced first aid certification. c) Effective communication and conflict resolution. d) Mastery of access control software. Answer: c Rationale: While technical skills are vital, "soft skills" like communication, empathy, de- escalation, and problem-solving are often what prevent a situation from escalating to violence and are essential for professional interaction with clients and the public. 18. What is the primary purpose of a Post Order? a) A general guide on company ethics. b) A detailed set of instructions for security personnel assigned to a specific post. c) A schedule of who is working each shift. d) A map of the facility. Answer: b Rationale: Post Orders (or Standing Operating Procedures) are site-specific. They provide
22. "Tailgating" (or piggybacking) refers to: a) A party after a security conference. b) Following an authorized person through a secure entrance without presenting a credential. c) A vehicle following another vehicle through a gate. d) The process of auditing access logs. Answer: b Rationale: Tailgating is a common social engineering and physical security breach where an unauthorized individual gains entry by closely following an authorized individual who has used their credential to open the door. 23. A mantrap is designed to: a) Trap animals that enter a facility. b) Be a comfortable waiting area for visitors. c) Physically separate an individual, control access, and prevent tailgating. d) A type of perimeter fence. Answer: c Rationale: A mantrap (or sally port) is a small space with two interlocking doors. Only one door can open at a time, allowing security to identify, verify, and control the entry of individuals, effectively preventing unauthorized access. 24. Which type of fence provides the greatest level of security? a) Chain-link b) Barbed wire c) Anti-ram vehicle barrier d) Ornamental iron Answer: c Rationale: While fencing is a perimeter delay, the question asks for the greatest level of security. An anti-ram vehicle barrier (e.g., bollards, concrete barriers) is designed to stop a vehicle-borne threat, which is a higher level of protection than a fence which primarily provides pedestrian delay and deterrence. 25. What is the primary purpose of security lighting? a) To make a facility look attractive at night. b) To deter intruders and allow for detection by guards and cameras. c) To save energy costs. d) To provide a source of backup power. Answer: b Rationale: Security lighting serves two main functions: deterrence (a well-lit area is less appealing to a potential intruder) and detection (it allows security personnel and CCTV to see activity clearly).
26. When conducting a vehicle search at a checkpoint, the security contractor should: a) Always search the vehicle in its entirety, including the engine compartment. b) Follow the client's standard operating procedures (SOPs) and be consistent. c) Only search the trunk. d) Let all vehicles pass to maintain good relations. Answer: b Rationale: Consistency and adherence to SOPs are critical for security checkpoints. Arbitrary or non-standard searches can lead to legal issues, complaints, and potential security gaps. The SOP defines the scope and method of the search. 27. A visitor arrives without a pre-arranged appointment and asks to see a senior executive. What is the correct first step? a) Allow the visitor to proceed to the executive's office. b) Escort the visitor to the executive immediately. c) Contact the executive or their office to verify the visit and obtain authorization. d) Deny entry and ask the visitor to leave the property. Answer: c Rationale: The security contractor's role is to control access. They must verify the visit with the executive's office. If the visit is legitimate, they can then follow the visitor management process (e.g., issue a badge, log entry, provide escort if required). 28. Which type of lock is most resistant to picking? a) A simple pin tumbler lock b) A wafer lock c) A high-security magnetic or electronic lock d) A padlock Answer: c Rationale: High-security magnetic, electronic, or smart locks do not have a traditional keyway that can be picked. They rely on electronic authentication (card, biometric, code), making them far more resistant to mechanical bypass techniques. 29. A delivery driver presents a valid ID but does not have a delivery order listed in the system. The security contractor should: a) Let the driver proceed to make the delivery quickly. b) Hold the driver at the gate and contact the shipping/receiving department for verification. c) Confiscate the driver's ID. d) Turn the driver away without further inquiry. Answer: b Rationale: The procedure for deliveries is to verify the legitimacy of the delivery with the
c) To deter and detect theft of company property. d) To ensure employees are not taking company secrets home. Answer: c Rationale: The purpose of an employee exit search policy is loss prevention. It is a deterrent against internal theft and, when applied consistently, a means to detect and recover stolen assets. Such policies must be clearly communicated and legally sound.
34. A security contractor notices that the gate arm at the vehicle entrance is malfunctioning and stays in the "up" position. What is the immediate priority? a) Wait for the maintenance department to fix it. b) Manually operate the gate until a repair can be made. c) Post a guard at the gate to manually inspect and control all vehicles entering and exiting. d) Ignore it, as it's a mechanical issue outside their scope. Answer: c Rationale: The failure of an automated access control system creates an immediate security gap. The priority is to revert to a manual control procedure. Posting a guard to inspect and control all traffic restores the access control function until the automated system is repaired. 35. Which of the following is a "passive" security measure? a) A security guard dog. b) An armed security officer. c) A reinforced steel door. d) A patrol vehicle. Answer: c Rationale: Passive security measures are those that do not require human intervention or active power to function. They provide a constant, static layer of security. A reinforced door, bollards, security glazing, and fencing are all examples. 36. What is the main security concern with a "roof hatch" on a commercial building? a) It allows for fire escape. b) It is a potential point of covert entry if not properly secured. c) It helps with HVAC maintenance. d) It is a source of natural light. Answer: b Rationale: Roof hatches are often overlooked, located out of sight, and can provide a direct, unmonitored route into a building. They must be secured with high-quality locks and monitored as part of the overall security plan.
37. Biometric access control systems authenticate identity based on: a) Something you have. b) Something you know. c) Something you are. d) Something you do. Answer: c Rationale: Biometrics use unique physical or behavioral characteristics, such as fingerprints, iris patterns, or facial structure. This falls under the "something you are" category of authentication factors. 38. An access control audit involves: a) Testing the strength of the physical doors. b) Reviewing access logs and user permissions to ensure they are still appropriate. c) Installing new card readers. d) Conducting a background check on security guards. Answer: b Rationale: An access control audit is a periodic review of the system's data. It ensures that user access rights are still valid (e.g., employees who left the company have been deactivated), that no unusual access patterns exist, and that the principle of least privilege is being maintained. 39. Which is the most effective method to prevent "under-door" attacks (e.g., passing tools under a door to manipulate a lock)? a) Using a standard key lock. b) Installing a door sweep or astragal. c) Placing a camera pointing at the door. d) Using a digital keypad lock. Answer: b Rationale: A door sweep is a physical barrier attached to the bottom of the door that closes the gap between the door and the floor. This prevents tools, wires, or other implements from being passed under the door to manipulate a lock from the other side. 40. A key control policy should include all of the following EXCEPT: a) A log of who holds each key. b) A procedure for reporting lost keys. c) Allowing keys to be duplicated at any local hardware store for convenience. d) A requirement to return keys upon termination of employment. Answer: c Rationale: A key control policy is designed to maintain accountability and prevent unauthorized duplication. Allowing keys to be duplicated at any hardware store defeats
b) Aluminum frame with glass. c) Solid steel door with a heavy-duty steel frame. d) Solid wood door. Answer: c Rationale: For physical security, a solid steel door, when combined with a heavy-duty steel frame that is properly anchored to the structure, provides the highest level of resistance against forced entry, including kicking, ramming, and tools.
45. "Glazing" is a term that refers to: a) The process of polishing a floor. b) The installation of windows or glass, especially security-rated glass. c) The application of a protective film to mirrors. d) A type of perimeter lighting. Answer: b Rationale: In security, "glazing" specifically refers to the glass in a building. "Security glazing" includes materials like polycarbonate, laminated glass, and bullet-resistant glass designed to resist impact, forced entry, or ballistic threats. 46. A security guard on patrol discovers a window that has been shattered. The room appears to have been entered. The guard's first action should be to: a) Enter the room to investigate. b) Call for backup, secure the area from a safe distance, and not enter until the scene is secured by a supervisor or law enforcement. c) Begin cleaning up the broken glass. d) Check to see if anything is missing. Answer: b Rationale: This is a potential crime scene and an active threat. The guard's primary duty is to protect life (including their own) and preserve the scene. They should not enter, as the suspect may still be inside. They should secure the perimeter, call for backup, and wait for a supervisor or police. 47. What is the primary advantage of a "closed-circuit" television (CCTV) system over an open broadcast system? a) It is cheaper to install. b) The signal is not publicly accessible and is intended for a specific set of monitors/recorders. c) It has a higher resolution. d) It can be viewed from anywhere in the world. Answer: b Rationale: By definition, "closed-circuit" means the video signal is transmitted to a limited, controlled set of monitors and recording devices. It is not broadcast over public airwaves or
the open internet without specific security controls, providing a layer of security for the video feed itself.
48. When positioning a security camera, which of the following should be avoided? a) Pointing the camera directly at a bright light source. b) Placing the camera under an eave. c) Positioning the camera to cover a choke point. d) Using a wide-angle lens for general area coverage. Answer: a Rationale: Pointing a camera directly at a bright light source (e.g., the sun, a powerful security light) will cause the camera's aperture to close or the sensor to become overwhelmed, creating a silhouette of the scene and rendering the image useless for identification. This is known as "backlighting." 49. The main purpose of a "pre-alarm" or "duress" alarm is to: a) Alert everyone in the building to a fire. b) Silently notify monitoring station or security personnel of a threat without alerting a perpetrator. c) Automatically lock all doors in a facility. d) Activate sprinkler systems. Answer: b Rationale: A duress alarm (often a hidden button or key fob) is designed to be activated discreetly by an employee or security officer under threat. It sends a silent signal for help, allowing for a covert response without escalating the immediate situation. 50. A guard is at a vehicle gate and a car pulls up with four occupants. Only the driver has a valid access badge. The guard should: a) Allow all to enter since the driver is authorized. b) Deny entry to the entire vehicle. c) Allow the driver to enter, but have the passengers wait outside the gate. d) Instruct the driver that only authorized personnel are permitted in the vehicle and they must either park outside and the passengers wait, or turn the vehicle around. Answer: d Rationale: The access control policy typically states that only authorized individuals are permitted on the property. The guard must enforce this. The driver is authorized, but the passengers are not. The guard must communicate the policy clearly and provide options that are consistent with site procedures, which would not allow unauthorized entry.
55. During an active shooter event, the recommended protocol for individuals who cannot safely evacuate is: a) Run, Hide, Fight. b) Observe, Orient, Decide, Act. c) Search, Secure, Silence. d) Barricade, Call, Fire. Answer: a Rationale: "Run, Hide, Fight" is the widely accepted survival protocol. First priority is to evacuate if there is a safe path. If not, find a secure place to hide and barricade. As a last resort, and only if your life is in imminent danger, you must fight to disrupt or incapacitate the shooter. 56. A security contractor is first on the scene of a medical emergency where a person is unresponsive and not breathing. What should be done first? a) Wait for medical professionals to arrive. b) Check the scene for safety, then check the victim for responsiveness and breathing. c) Immediately begin CPR. d) Move the victim to a more comfortable location. Answer: b Rationale: The first step in any emergency response is to ensure the scene is safe for you to approach. Then, you must assess the victim. If they are unresponsive and not breathing (or only gasping), you should then begin CPR and activate EMS. 57. The "Chain of Survival" for cardiac arrest emphasizes: a) Calling 911, then waiting. b) Early recognition, early CPR, early defibrillation, and advanced life support. c) Getting the victim water and aspirin. d) Moving the victim to a hospital immediately. Answer: b Rationale: The Chain of Survival is a sequence of actions that, when performed in rapid succession, significantly increase the chance of survival from cardiac arrest. Early CPR and early defibrillation (with an AED) are the critical links that a security contractor can provide. 58. An Automated External Defibrillator (AED) should be used on a person who is: a) Conscious and complaining of chest pain. b) Unconscious and not breathing. c) Having a seizure. d) Bleeding profusely. Answer: b Rationale: An AED is designed to analyze the heart's rhythm and deliver a shock if it
detects a "shockable" rhythm (ventricular fibrillation or pulseless ventricular tachycardia). It is only used on an unresponsive, non-breathing person to attempt to restore a normal heart rhythm.
59. In a bomb threat situation, the primary goal of security is to: a) Find and disarm the bomb. b) Conduct a thorough search and evacuate as per the bomb threat plan. c) Detain the person who reported the threat. d) Ignore the threat as most are hoaxes. Answer: b Rationale: Security personnel are not bomb disposal experts. Their role is to execute the site's bomb threat plan, which typically involves a systematic search by trained personnel and a decision to evacuate based on the credibility of the threat and the search results. 60. What is the most important piece of information to obtain from a caller reporting a bomb threat? a) The caller's name. b) The caller's location. c) The exact location of the bomb and the time it is set to detonate. d) The caller's political affiliation. Answer: c Rationale: While all information is valuable, the most critical is the location of the device and its intended detonation time. This information drives the search and evacuation priorities, directly impacting life safety. 61. During a severe weather warning (e.g., tornado), security personnel should direct occupants to: a) The building's parking lot. b) Windows to observe the storm. c) Interior rooms or hallways on the lowest floor, away from windows and doors. d) Exterior stairwells. Answer: c Rationale: For severe winds, the safest location is an interior, windowless room on the lowest possible level. This provides the most protection from flying debris and structural collapse. 62. The "RACE" protocol for fire response is: a) Run, Alert, Contain, Escape b) Rescue, Alarm, Confine, Extinguish/Evacuate c) Remove, Act, Call, Evacuate d) Ready, Aim, Call, Extinguish
for the facility. c) Send everyone home. d) Go on patrol with a flashlight. Answer: b Rationale: Security's role in a power outage is to transition to contingency operations. They must ensure emergency generators or battery backups for critical systems (access control, lighting, comms) are operating, manage access control manually if needed, and maintain a visible presence to deter any opportunistic crime.
67. A person is experiencing a seizure. The security contractor should: a) Place a wallet in the person's mouth to prevent them from swallowing their tongue. b) Restrain the person to prevent injury. c) Clear the area of hazards, protect the person's head, and time the seizure. d) Splash water on the person's face. Answer: c Rationale: The correct first aid for a seizure is to protect the person from injury. This means moving dangerous objects away, cushioning their head, and timing the duration of the seizure. You should never put anything in their mouth or restrain them. 68. Which of the following is a sign of a potential workplace violence situation? a) An employee consistently arriving early. b) An employee who is well-liked and social. c) An employee exhibiting a pattern of threatening behavior, increased frustration, or fascination with weapons. d) An employee requesting time off. Answer: c Rationale: There is no single profile for a violent individual, but there are behavioral indicators. A pattern of escalating, threatening behavior, expressions of hopelessness or extreme anger, and an unusual interest in weapons are all potential warning signs that should be reported. 69. During an evacuation, the designated assembly point is important because it allows for: a) A safe place for employees to smoke. b) A location to conduct a headcount and account for all personnel. c) A place to store equipment. d) An area to confront emergency responders. Answer: b Rationale: The primary purpose of an assembly point is accountability. By having all evacuees report to a predetermined, safe location, supervisors and security can quickly determine if anyone is missing and still inside the building.
70. A "shelter-in-place" order is given when: a) There is a small fire in a trash can. b) The threat is external (e.g., chemical release, active shooter outside) and moving inside the building is safer than evacuating. c) The building is on fire. d) There is a minor medical emergency. Answer: b Rationale: Shelter-in-place is the opposite of evacuation. It is used when the outside environment is hazardous, and the safest course is to seal the building (close windows, doors, HVAC) and remain inside until the threat passes. 71. When performing CPR on an adult, the recommended compression depth is: a) 1 inch b) 1.5 inches c) At least 2 inches (5 cm) d) At least 3 inches Answer: c Rationale: Current AHA guidelines recommend a compression depth of at least 2 inches ( cm) for an adult, but no more than 2.4 inches (6 cm). Adequate depth is critical to generate blood flow. 72. What is the correct compression-to-ventilation ratio for a single-rescuer adult CPR? a) 15: b) 30: c) 30: d) 5: Answer: c Rationale: The standard for single-rescuer adult CPR is 30 chest compressions followed by 2 rescue breaths. This ratio prioritizes continuous chest compressions to maintain perfusion. 73. A chemical spill occurs in a warehouse. A security contractor's first action should be to: a) Immediately begin cleaning it up. b) Evacuate the immediate area and contact the site's Hazardous Materials (HAZMAT) response team or supervisor. c) Smell the chemical to identify it. d) Order everyone to continue working. Answer: b Rationale: Chemical spills can pose immediate life-safety and health hazards. Security's
