(LEA 3) INTRODUCTION TO INDUSTRIAL SECURITY CONCEPTS

ThatQuiz Test Library Take this test now

Contributed by: Ninge

1. A security manager must decide whether to subcontract guard services to meet sudden demand. Under RA 11917’s objectives on professional practice, which factor is most important to evaluate before subcontracting?

A) Contractor reputation, licensing compliance, and personnel training records
B) Speed of contract signing
C) Lowest bid from contractors
D) Number of guards available this month

2. A private security agency violates RA 11917 by failing to register personnel properly. To evaluate risk exposure, which step best aligns with the law’s management intent?

A) Conduct an audit of all personnel files and implement corrective registration and training actions
B) Fire the negligent staff immediately
C) Blame outsourced HR
D) Ignore it if no incident occurred

3. Given RA 11917’s emphasis on professional standards, which performance metric most accurately measures compliance across guard teams?

A) Number of arrests made
B) Average daily patrols logged
C) Percentage of personnel with up-to-date certifications, completed training hours, and records of disciplinary actions
D) Client satisfaction surveys only

4. A security firm wants to redesign its SOPs to meet RA 11917. Which redesign approach best demonstrates compliance and continuous improvement?

A) Keep SOPs informal to allow flexibility
B) Copy SOPs from a competitor
C) Use risk assessment results, stakeholder input, and mandatory provisions of RA 11917 to create measurable SOPs and training plans
D) Make SOPs only for supervisors

5. An operations director must allocate limited budget to training or equipment upgrades. Evaluating RA 11917’s focus on professional competency, which allocation is more defensible?

A) Upgrade CCTV only
B) Invest in prioritized training for key skills and minimum equipment upgrades ensuring competence and compliance
C) Hire more administrative staff
D) Delay both until next fiscal year

6. A client requests a security strategy that contradicts RA 11917 professional responsibilities (e.g., encourage guards to use excessive force). What should the agency do?

A) Implement but keep it undocumented
B) Refuse, explain legal/professional limits, propose compliant alternatives, and document the interaction
C) Ignore the request
D) Comply to keep the client

7. To ensure RA 11917’s practice-of-profession standards, the board issues new implementing rules. As an operations manager, how would you operationalize them?

A) Announce them once to staff
B) Immediately integrate rules into SOPs, train staff, and create monitoring KPIs with audit schedules
C) Only update senior management
D) Wait for enforcement visits

8. You detect recurring minor violations by night-shift guards. Applying RA 11917’s managerial intent, which is the best corrective action?

A) Transfer the guards to day shift
B) Ignore since violations are minor
C) Terminate the night shift supervisor instantly
D) Analyze root causes, update training, adjust schedules, and implement supervisory spot-checks to prevent recurrence

9. A security agency’s internal audit reveals documentation gaps that could breach RA 11917 during inspections. What evaluation approach best reduces risk?

A) Assume auditors won’t notice
B) Prioritize corrective documentation practices, assign owners, and run weekly compliance reviews until stable
C) Hide gaps from inspectors
D) Do nothing until an inspection occurs

10. A licensed security officer is accused of misconduct. Under RA 11917 principles, the agency’s best course is to.

A) Suspend pending a fair investigation, document findings, coordinate with the licensing authority if required, and follow due process
B) Ignore the complaint
C) Defend the officer publicly without investigation
D) Terminate immediately without investigation

11. The agency faces reputational risk after a public incident. Which management action best aligns with RA 11917’s requirement for professionalism?

A) Blame the client
B) Conduct transparent internal review, communicate corrective measures to stakeholders, and update training/policies
C) Fire personnel and keep it secret
D) Deny involvement and stay silent

12. When introducing biometric access for guards, which strategy best ensures alignment with RA 11917 on privacy and operational integrity?

A) Install without policies
B) Use biometrics only for some staff inconsistently
C) Share biometrics openly with clients
D) Develop data protection procedures, obtain consent, limit access rights, and train personnel on privacy obligations

13. A junior manager proposes performance-based pay tied to arrest counts. Evaluating against RA 11917 standards, why might this be problematic?

A) It’s standard practice everywhere
B) It reduces costs
C) It increases arrests
D) It may incentivize improper conduct; instead, design balanced KPIs that reward lawful, professional behavior and client service

14. A company wishes to expand to a new province. What RA 11917–aligned analysis must be performed first?

A) Legal/regulatory compliance check, local licensing requirements, market risk assessment, and staffing plan aligned with professional standards
B) Copy existing contracts without change
C) Hire local guards immediately
D) Announce expansion on social media

15. Confronting systemic low morale tied to unrealistic workloads, which RA 11917–consistent management decision best addresses both compliance and wellbeing?

A) Cut rest breaks to increase coverage
B) Redesign shift rosters, hire additional staff, provide welfare and training, and monitor service quality metrics
C) Ignore morale, focus on outputs
D) Require overtime indefinitely

16. A training program is proposed to meet RA 11917. To evaluate its effectiveness, which method is best?

A) Use a single multiple-choice test
B) Pre/post competency testing, practical assessments, field audits, and follow-up performance metrics tied to SOPs
C) Count attendance only
D) Ask trainers if they liked it

17. A client asks the agency to withhold incident reports to avoid bad publicity. Under RA 11917, what should the agency do?

A) Partially redact and send a false summary
B) Refuse, explain legal obligations, report as required, and propose reputational management strategies that are lawful
C) Cooperate without question
D) Hide the incident forever

18. Which decision best demonstrates organizational accountability required by RA 11917 after a compliance breach?

A) Only disciplining frontline staff
B) Ignoring the breach
C) Firing CEO immediately without investigation
D) Public acknowledgement of breach, corrective plan, assigned responsibilities, and transparent progress reports to stakeholders and regulators

19. In designing hiring criteria to meet RA 11917, which candidate attribute should be weighted highest to ensure professional practice?

A) Valid licensing/certification, background check clearance, competency in required skills, and evidence of integrity
B) Physical strength only
C) Age alone
D) Willingness to work for low pay

20. A field commander suggests reducing patrol frequency to save cost, despite increased local theft. Using RA 11917 framework, the manager should____.

A) Replace patrols with fewer cameras only
B) Perform a risk assessment, quantify impact on safety/service, propose an optimized deployment that balances cost and risk mitigation
C) Reduce patrols to save money
D) Ignore the commander

21. Which measure best shows proactive compliance with RA 11917 before an external audit?

A) Hiding records likely to be queried
B) Only updating documents on the audit day
C) Waiting for audit feedback
D) Conducting internal compliance audit using the law’s checklist, fix issues, and prepare evidence of corrective actions

22. For career development aligned with RA 11917 professionalism, which policy is most effective?

A) Promote relatives of managers
B) Create a competency-based career ladder with mandatory training milestones, certifications, and mentorships tied to promotions
C) No career path, only daily tasks
D) Promote only by seniority

23. If a security agency finds falsified training records, which action both enforces RA 11917 and protects operations?

A) Terminate entire staff at once
B) Ignore to keep numbers clean
C) Immediately investigate, validate qualifications, discipline per policy, notify licensing board if needed, and remediate training gaps
D) Replace documentation without action

24. In drafting emergency SOPs to align with RA 11917, what element is most critical to ensure both professionalism and accountability?

A) A vague description of roles
B) Clear roles/responsibilities, communication protocols, legal compliance steps, and training/testing schedules
C) Only a list of emergency contacts without procedures
D) Only evacuation routes

25. A security firm considers outsourcing background checks. Which RA 11917–conscious control should be implemented?

A) Vendor qualification, standard operating procedures, data protection clauses, and periodic verification audits
B) Only verbal assurances from vendor
C) No contract needed
D) Full delegation without oversight

26. The agency must decide on disciplinary benchmarks. Which policy best reflects RA 11917 principles?

A) Punishments only for low-ranking personnel
B) Arbitrary punishments to deter misconduct
C) Clear, consistent disciplinary procedures with due process and appeals, proportionate sanctions, and rehabilitation options
D) No discipline to avoid conflict

27. Which organizational metric best indicates successful integration of RA 11917 into daily operations?

A) Total number of guards hired this year
B) Number of social media posts about compliance
C) Number of client complaints ignored
D) Percentage of staff current with licensing, passing rates on competency tests, and reduction in incident recurrence

28. A manager must choose between two training vendors: one cheaper but unaccredited, one slightly costlier with accreditation and QA. RA 11917–aligned choice is_____.

A) Use in-house unstructured training only
B) Accredited vendor to ensure compliance and quality of professional competency
C) Cheaper vendor to save funds
D) Choose randomly

29. To comply with RA 11917 data transparency, which reporting policy is best for incident data shared with clients?

A) Share raw staff notes
B) Only verbal summaries without records
C) Never share any data
D) Standardized incident reports with factual details, timelines, and corrective actions while protecting privacy and legal rights

30. A new technological tool promises efficiency but conflicts with licensing requirements under RA 11917. What should management do?

A) Ignore licensing and assume no consequences
B) Halt deployment until legal compliance review, risk assessment, and policy updates are completed
C) Deploy immediately to gain advantage
D) Deploy selectively without oversight

31. During customer confrontation, a guard must de-escalate and document. Which combined action best shows higher-order competency?

A) Escort the customer off premises immediately without documentation
B) Apply verbal de-escalation, preserve evidence, capture witness statements, and file an objective incident report for investigative follow-up
C) Call supervisor only after incident
D) Use force to end argument

32. A complaint alleges discriminatory behavior by a guard. Evaluating training efficacy, what analysis identifies root causes?

A) Analyze training records, situational transcripts, supervisor oversight, and cultural-competency gaps to redesign training modules
B) Mark complaint as resolved without investigation
C) Fire the guard immediately without assessment
D) Blame the complainant

33. A security trainer must design a scenario-based exercise for investigation skills. Which objective best demonstrates HOTS learning outcomes?

A) Simulate a complex theft, require teams to collect evidence lawfully, interview witnesses, chain evidence, analyze motive, and prepare prosecutable documentation
B) Memorize the steps of filing a report
C) Only practice radio communication
D) Watch a video about investigations

34. A security officer finds suspicious behavior suggesting corporate espionage. Which investigative action best balances immediate safety and intelligence integrity?

A) Confront aggressively and interrogate
B) Ignore unless theft occurs
C) Publicly accuse individuals
D) Secure the area, discreetly observe, collect non-intrusive intelligence, escalate to authorized investigators, and preserve chain of custody for any evidence

35. A customer claims property missing; CCTV is inconclusive. Which investigative method best uses HOTS skills?

A) Accept client’s claim without verification
B) Cross-check access logs, interview guards and staff, analyze patterns, seek physical evidence, and map possible timelines to reconstruct events
C) Blame CCTV system
D) Replace missing item immediately

36. Training includes ethics and use-of-force. Which training assessment best shows a trainee has evaluated complex scenarios correctly?

A) A practical exercise presenting ambiguous threat levels where trainee articulates proportional response, legal justification, and post-incident reporting steps
B) Timed obstacle course
C) True/false quiz
D) Multiple-choice Only

37. A VIP requests privacy beyond normal protocol. Which action best balances customer relations skills with policy and legal constraints?

A) Refuse all VIP requests automatically
B) Evaluate request, seek management approval, document exceptions, and ensure legal and safety approvals are met before altering protocols
C) Handle privately without documentation
D) Grant all VIP requests regardless of policy

38. A guard detects a potential insider leak. Which investigative strategy best aligns with corporate intelligence principles?

A) Ignore the possibility
B) Accuse the suspected employee publicly
C) Send a company-wide email accusing staff
D) Initiate discreet intelligence collection, limit disclosure to need-to-know, correlate access histories, and coordinate with HR and legal before a covert operation or disciplinary action

39. Which protocol best demonstrates advanced customer-relations judgement in a crisis evacuation?

A) Evacuate without informing customers of exits
B) Lock doors and continue operations
C) Evacuate only employees and leave customers
D) Provide clear, calm instructions, designate staff to assist vulnerable customers, communicate updates, and ensure post-evacuation accountability and client communications

40. A guard obtains eyewitness statements that conflict. Which investigative evaluation produces the most reliable reconstruction?

A) Ignore contradictions and accept the first statement
B) Choose the statement that fits a manager’s preconception
C) Cross-validate statements with physical evidence, timelines, and CCTV; assess witness credibility and corroborate with independent sources
D) Discard all statements as unreliable

41. You're designing a training module on report writing. Which learning activity demonstrates creating-level skills?

A) Copying a template report
B) Trainees must draft a full investigative report from a simulated incident, including chain-of-custody forms, legal considerations, and executive summary for stakeholders
C) Watching sample report videos
D) Reading sample reports

42. A guard must decide whether to detain a suspect until police arrive. Which criterion best reflects lawful and professional decision-making?

A) Evaluate probable cause, safety, legal authority, risk to the public, and document justification for detention consistent with law and organizational policy
B) Detain only if manager is present
C) Never detain to avoid trouble
D) Always detain suspects regardless of evidence

43. For improving client trust, which intelligence practice should a security unit implement?

A) Market and publicize internal investigations widely
B) Share raw intelligence files externally
C) Withhold all incident information
D) Implement a confidential incident feedback loop, transparent service-level reporting, and regular stakeholder briefings while protecting sensitive intelligence

44. A guard faces confrontation where de-escalation fails and a suspect flees. Which evaluative step best supports later investigation and accountability?

A) Post chase details on social media
B) Ignore documenting the chase
C) Immediately secure scene, interview witnesses, note pursuit details (times, directions), coordinate with police, and ensure bodycam/CCTV capture preserved
D) Continue searching without reporting

45. A company wants metrics for customer service by guards. Which combined KPI set best demonstrates HOTS alignment?

A) Number of guard selfies with clients
B) Number of calls to security center
C) Response time, resolution effectiveness, lawful conduct incidents, follow-up documentation quality, and client satisfaction surveys analyzed for training gaps
D) Number of compliments only

46. When investigating industrial sabotage, which multi-disciplinary approach most effectively uses corporate intelligence principles?

A) Fire a random employee to deter sabotage
B) Blame external competitors without proof
C) Integrate physical forensics, digital forensics, personnel access records, vendor contract review, and external threat intelligence to determine motive and actors
D) Focus only on physical security

47. A trainee shows bias in interactions. For competency development, which learning intervention best addresses the issue?

A) Ignore since performance is otherwise good
B) Immediately terminate the trainee
C) Facilitate scenario-based bias-awareness training, role-play customer-relations simulations, and evaluate behavior changes through supervision and feedback
D) Give a written warning only

48. A security team must create an intelligence brief for management. Which structure best reflects analyzing-level skills?

A) Bullet list of rumors
B) Executive summary, threat assessment with evidence, impact analysis, recommended mitigations, and prioritized action plan with resource estimates
C) Long narrative without conclusions
D) Use raw messages with no analysis

49. An officer must preserve digital evidence from a smartphone found at a crime scene. Which sequence best ensures forensic integrity?

A) Hand phone to client for safekeeping
B) Let anyone access phone to look for info
C) Post images from the phone on social media
D) Isolate device (airplane mode), document chain-of-custody, avoid powering on/off unnecessarily, and coordinate with digital forensics specialists for imaging

50. After a major incident, which customer-relations strategy best demonstrates evaluative leadership?

A) Provide a generic press release only
B) Blame clients for causing incident
C) Ignore clients to avoid panic
D) Provide transparent incident report, outline corrective actions, offer remediation where appropriate, and solicit client feedback for continuous improvement

51. A guard notices a pattern of petty thefts correlated with a specific vendor shift. Which investigative action best demonstrates analytical intelligence?

A) Ignore since thefts are petty
B) Remove vendor without cause
C) Review vendor access logs, reconcile deliveries, interview staff, and recommend vendor audits and strengthened access controls
D) Confront vendor employees immediately

52. For measuring investigative competence, which evaluation method demonstrates HOTS?

A) Observing attendance only
B) Practical casework assessment requiring chain-of-custody, witness interview, analytical timeline, and prosecutable report reviewed by external expert
C) Asking trainees if they feel confident
D) Quiz on definitions

53. A guard must decide whether to detain a person found with a suspicious keycard. Which decision shows legal and investigative reasoning?

A) Ignore the keycard since it’s not a weapon
B) Immediately arrest the person without cause
C) Destroy the keycard to prevent misuse
D) Assess card ownership via access logs, interview the person, secure evidence, and detain only if probable cause exists and legal authority is clear

54. A security manager needs to reallocate training hours after a budget cut. Which analytical choice best preserves investigative readiness?

A) Replace training with memos
B) Prioritize scenario-based, high-impact modules (e.g., evidence handling, interview skills), cross-train supervisors, and use blended learning to save costs
C) Cancel all investigative training
D) Outsource all training abroad

55. A guard observes a senior staff member bypassing access controls. Which response best demonstrates professional integrity and investigative judgment?

A) Copy the senior staff’s behavior
B) Ignore due to seniority
C) Discreetly document the breach, report via appropriate channels, and follow up with a compliance investigation regardless of rank
D) Confront publicly and humiliate the staff member

56. A client requests summary intelligence on theft patterns across their multiple sites. Which analytic product best meets their needs?

A) Comparative incident trend analysis with heat maps, root-cause insights, and prioritized remediation recommendations across sites
B) One-line email saying “everything’s fine”
C) Raw incident logs with no analysis
D) A single site’s incident report only

57. During a simulated active aggression drill, which trainee behavior shows creating-level mastery?

A) Hiding from the drill
B) Leaving the area immediately
C) Shouting to scare suspect away
D) Developing a controlled, multi-step response integrating de-escalation, team coordination, evidence preservation, and post-incident documentation plan

58. In preparing investigators, which policy ensures integrity of witness interviews?

A) Encourage leading questions to speed up results
B) Use structured interview protocols, record sessions (where legal), document non-leading questioning, and protect witness confidentiality to maintain credibility
C) Offer witnesses money to change statements
D) Allow informal interviews with no record

59. A security team must convert raw intelligence into actionable tasks. Which prioritization method best demonstrates HOTS reasoning?

A) Act on the first tip received
B) Prioritize by risk (likelihood × impact), feasibility, legal constraints, and potential to prevent harm, then assign resources accordingly
C) Randomly choose tasks
D) Only pursue tasks that are easy

60. A guard must create an incident narrative for prosecution. Which approach shows evaluative skills?

A) Omit inconvenient facts
B) Include hearsay as fact
C) Write emotional descriptions to sway court
D) Produce objective, chronological facts, corroborate with evidence, avoid opinion, and include evidence logs and witness details for legal scrutiny

61. A newly contracted warehouse has repeated after-hours break-ins. Which step in a security survey demonstrates analytical evaluation before recommending countermeasures?

A) Immediately hire more guards
B) Conduct a site survey mapping vulnerabilities, crime patterns, access points, lighting, CCTV blind spots, and then match controls to quantified risk priorities
C) Hand the problem to the client
D) Replace lock hardware only

62. After a risk assessment, management must choose between two mitigation options: costlier CCTV coverage or hiring additional guards. Which decision-making approach best aligns with risk management principles?

A) Perform cost-benefit analysis, consider residual risk, deterrence effects, and long-term total cost of ownership before selecting a layered solution
B) Choose the cheaper option
C) Pick both regardless of budget
D) Flip a coin

63. While performing a personnel security review, you find several positions lack background checks. Which remedial plan best balances continuity and compliance?

A) Ignore the oversight
B) Wait for an incident to act
C) Implement urgent background checks for critical roles, temporary restrictions on sensitive access, and a schedule to complete checks for all relevant staff
D) Fire all unvetted personnel immediately

64. A facility’s document-handling SOPs permit broad internal copying of sensitive records. Which change will best reduce information security risk while preserving operations?

A) Store all records outside the facility only
B) Ban all internal copying
C) Allow anyone access if they request it
D) Introduce classification levels, need-to-know access, logging of sensitive document handling, and secure disposal procedures balanced with business needs

65. During BCP planning, which business process should be prioritized for recovery if it directly supports life safety?

A) Evacuation communications, emergency medical response coordination, and secured access to critical safety systems
B) The coffee vending machine
C) Marketing campaign systems
D) Payroll processing

66. An auditor asks for evidence that proposed security controls reduce risk. Which evaluation method provides the strongest proof?

A) Verbal assurance only
B) Pilot implementation with metrics: incident rates pre/post, penetration test results, and quantitative risk reduction modeling
C) Testimonials without data
D) Photo of new equipment only

67. A perimeter fence upgrade is considered low priority but highly visible to customers. What advanced recommendation most appropriately balances security effectiveness with stakeholder expectations?

A) Build the thickest, most aggressive fence possible regardless of impact
B) Opt for an ornamental fence for appearance only
C) Ignore both risk and appearance
D) Recommend a layered approach: discreet intrusion detection, natural surveillance improvements (lighting/landscaping), and targeted fencing where risk justifies it

68. A company wants to digitize personnel files. Which information-security control should be applied first?

A) Implement access controls, encryption, audit logging, role-based permissions, and a documented retention/destruction policy before digitization
B) Only password-protect with a generic password
C) Save on local desktops only
D) Post files on a public drive for convenience

69. A supply-chain disruption threatens critical components. Which BCP step best demonstrates HOTS planning?

A) Activate contingency suppliers, prioritize critical processes for recovery, implement manual fallback procedures, and communicate with stakeholders per the BCP
B) Close operations until supplier returns
C) Blame the supplier publicly
D) Hope the supplier resumes quickly

70. A security survey shows repeated tailgating at main gates. Which multi-layered control plan best addresses the root cause?

A) Replace guards with a single camera only
B) Allow tailgating during busy hours
C) Combine physical barriers, access credential upgrades, anti-tailgate technology, staff training, and monitoring with enforcement policies and sanctions
D) Increase gate height alone

71. Evaluating a document security breach, which analytical sequence will best determine corrective measures?

A) Map the leak pathway (who had access), review controls, interview staff, assess extent of compromise, and implement technical/administrative remediations and monitoring
B) Ignore if not publicized
C) Delete the breached files to hide the issue
D) Fire a random staff member

72. Which risk treatment option best demonstrates an evidence-based approach for high-likelihood, low-impact threats?

A) Wait until something happens before deciding
B) Spend maximum budget to eliminate them entirely
C) Accept where cost of mitigation exceeds impact, but monitor and periodically reassess; implement low-cost controls where feasible
D) Ignore such threats entirely

73. For information security, which control best addresses both insider threat and business continuity?

A) Implement least-privilege access, session monitoring, privileged access management, and documented emergency override procedures with audit trails
B) Give administrators full access with no oversight
C) Remove all admin privileges from everyone permanently
D) Use a single master password for ease

74. A new manufacturing line adds unknown risks. Which planning approach best ensures resilient operations?

A) Outsource risk to contractors
B) Rely on insurance to cover problems
C) Conduct a targeted risk assessment, integrate controls into process design, update BCP and recovery priorities, and train staff before commissioning
D) Start production immediately and adapt later

75. When evaluating CCTV placement, which analytic consideration yields the best coverage plan?

A) Place them only where cosmetically appropriate
B) Place cameras randomly to cover all walls
C) Cover only entrances and ignore interior zones
D) Use threat scenarios, sightlines, lighting conditions, image retention needs, privacy impacts, and integration with response procedures to optimize placement

76. A critical document is accidentally made public. Which immediate response demonstrates proper incident management and continuity planning?

A) Contain exposure, assess scope, notify affected parties per policy, apply legal/PR strategies, and strengthen access controls to prevent recurrence
B) Delete the document and hope for the best
C) Ignore unless someone complains
D) Blame the IT department without analysis

77. Which combination of countermeasures best reduces both physical theft and data exfiltration risks at a sensitive research lab?

A) Lock doors only
B) Allow open access to foster collaboration
C) Only increase signage about confidentiality
D) Access control, visitor vetting, CCTV, data segmentation, endpoint protection, and strict document handling policies with staff vetting and monitoring

78. A building’s emergency generator fails during a drill. Which analytic step best informs BCP revision?

A) Replace the generator with the same model without analysis
B) Cancel future drills to avoid failures
C) Conduct root-cause analysis, test redundancy, evaluate manual workarounds, update recovery time objectives (RTOs), and schedule corrective maintenance and alternate backup sources
D) Dismiss the failure as a fluke

79. A security plan must address both low- and high-probability catastrophic events. Which planning principle ensures resource-efficient resilience?

A) Treat all events equally
B) Use risk-based prioritization focusing on high-impact events first, adopt proportional controls, and incorporate scalable contingency options
C) Only buy the most expensive mitigation available
D) Only plan for everyday minor events

80. For personnel security, which hiring control best minimizes fraud risk in finance roles?

A) Hire friends of management only
B) Require multi-source reference checks, financial background screenings, integrity testing, and role-specific monitoring with separation of duties
C) Hire quickly without vetting to fill vacancies
D) Only check identity documents

81. A plan relies entirely on vendor cloud backup. Which risk assessment finding should prompt a change?

A) Cancel backups altogether
B) No change is needed; cloud providers are always reliable
C) Rely on on-premises tapes only without testing
D) Single-point-of-failure in vendor dependency; recommend multi-region/backups, contractual SLAs, and test restores to ensure recovery capability

82. A critical corridor is both a fire route and a security chokepoint. Which design remedy best balances safety and security requirements?

A) Keep the corridor unlocked for convenience
B) Use alarmed, access-controlled doors that comply with egress codes (fail-safe mechanisms), combined with monitoring and clear signage to preserve life-safety while securing areas
C) Block the corridor to prevent unauthorized access
D) Use bolt locks that require keys and prevent escape

83. A data classification scheme is inconsistent across departments. What corrective action best improves document security governance?

A) Delete old classifications
B) Let each department do as they wish
C) Outsource classification to an external vendor with no integration
D) Implement enterprise-wide classification policy, training, and enforcement with tools for labeling and automated controls tied to BCP priorities

84. A risk register lists many low-priority items. For efficient planning, which analytical step best optimizes resource allocation?

A) Spend budget evenly across all items
B) Discard all low-priority risks entirely
C) Treat low-priority items first
D) Group similar risks, assess aggregated impact, reprioritize by combined likelihood and impact, and address clusters with single controls where effective

85. During penetration testing, testers exploited access via an unmonitored utility entrance. Which control revision best mitigates this vector?

A) Close the entrance permanently
B) Remove all utility entrances and relocate utilities
C) Ignore since utilities are low profile
D) Add access control, monitoring, staff awareness, and integrate the utility entrance into patrol and CCTV coverage with procedural checks

86. A key supplier is in an unstable region. Which BCP strategy best ensures continuity of supply?

A) Develop alternate suppliers, maintain safety stock for critical items, and create contractual contingencies and rapid switch-over procedures
B) Do nothing and hope supplier remains stable
C) Move all production to the unstable region
D) Rely on the supplier’s assurances only

87. After a security survey, you recommend layered access control. Which justification best convinces senior management?

A) Offer anecdotal stories only
B) Says it looks more professional
C) Claim it is mandatory without evidence
D) Present quantified risk reduction, ROI estimate, incident-avoidance costs vs. implementation cost, and regulatory/compliance benefits for decision-making

88. For continuity, which testing regimen provides the strongest assurance BCP will work during real events?

A) A tabletop exercise only every five years
B) Regular drills of full-scale recovery, desktop scenario testing, supplier continuity tests, and evidence-based post-exercise improvements with timelines
C) Only read the BCP document annually
D) Outsource testing and ignore results

89. A building uses open Wi-Fi in public areas. To reduce information security risk without hindering customer experience, which plan best balances both concerns?

A) Remove Wi-Fi entirely
B) Use the corporate network for guests
C) Display passwords publicly in the lobby
D) Implement segmented guest networks isolated from corporate resources, enforce bandwidth/security policies, and present clear acceptable-use terms

90. A company is required to recover operations within 24 hours. Which planning step best ensures this recovery time objective (RTO) is achievable?

A) Reduce employee hours to save costs and hope for the best
B) Only purchase extra servers without testing
C) Map critical processes, identify dependencies, establish recovery strategies (hot/warm sites), test restores, and align resource allocations to meet the RTO
D) Assume systems will be back in time by luck

91. When redesigning a retail complex for CPTED (Crime Prevention Through Environmental Design), which integrated change best demonstrates synthesis of theory and practice?

A) Add more security guards only
B) Reconfigure sightlines with low landscaping, optimize lighting, create natural surveillance, control access, and combine signage and territorial reinforcement to reduce crime opportunities
C) Add metal detectors only
D) Install only high fences with barbed wire

92. Evaluating CPTED vs. mechanistic security for a mixed-use urban plaza, which argument best reflects high-level analysis?

A) Mechanistic security always wins
B) CPTED is obsolete
C) A hybrid approach that uses CPTED for long-term social prevention and targeted mechanical systems for high-risk nodes yields better resilience and community acceptance
D) Use only police patrols and nothing else

93. A proposed building layout creates many blind corridors. From an architectural-security perspective, which redesign principle best reduces risk while preserving aesthetics?

A) Add murals to decorate blind spots only
B) Close the corridors permanently
C) Keep blind corridors and increase patrols only
D) Introduce transparency (glass), natural surveillance points, mirrored sightlines, and controlled access while maintaining aesthetic coherence

94. Urban planners want to discourage loitering that fuels petty crime but not alienate legitimate users. Which policy best balances security philosophy and public access?

A) Close the space at night permanently
B) Design inclusive public spaces with active uses (cafés, vendor stalls), adequate lighting, seating that discourages long-term loitering in sensitive areas, and community policing initiatives
C) Remove seating entirely to prevent anyone from staying
D) Enforce blanket anti-loitering laws harshly

95. A high-rise integrates security into façade design. Which design decision best demonstrates creative application of physical security principles?

A) Cover the façade with solid metal plates
B) Hide guards in basements only
C) Use architectural features (bollards disguised as planters, setback landscaping, and reinforced glazing) that provide protection without visible fortress aesthetics
D) Add visible armed sentries on every corner of the roof

96. For a campus experiencing repeated thefts from parked vehicles, which multi-disciplinary solution best applies theory to practice?

A) Install random spikes that damage tires to stop parking
B) Only hand out pamphlets about theft prevention
C) Reorganize parking into well-lit, surveilled zones, increase natural surveillance through foot traffic patterns, add controlled access points, and run community awareness campaigns
D) Ban parking entirely

97. A new mall design could either concentrate retail in a single atrium or distribute shops across multiple nodes. Which layout better applies security philosophy to reduce target attractiveness while preserving commerce?

A) Randomly place shops with no planning
B) Hide all shops behind secured doors only accessible by staff
C) One concentrated atrium for maximum density
D) Distributed nodes with clear sightlines, controlled access points, and secure back-of-house circulation to reduce single-point-target risk and support emergency egress

98. Which philosophical justification best supports integrating community engagement into physical security planning for neighborhoods?

A) Community input always increases crime
B) Only technology can prevent crime, community engagement is irrelevant
C) Community engagement slows down planning
D) Engaged communities increase social cohesion, informal guardianship, and long-term deterrence, reducing reliance on costly mechanical controls and improving legitimacy of security measures

99. A security architect must reconcile heritage preservation with modern security needs. Which solution best balances both goals?

A) Build a separate modern structure next to the heritage site and move everything there
B) Use reversible, non-invasive security installations (discreet cameras, mobile access solutions, sympathetic barriers) and collaborate with conservationists to maintain historical integrity while improving protection
C) Replace the heritage site with a modern fortress
D) Ignore security to preserve authenticity

100. When evaluating a proposal for hostile vehicle mitigation on a public promenade, which analytical framework best ensures both safety and urban amenity?

A) Use temporary measures only during festivals
B) Close the promenade to the public permanently
C) Use graduated measures (landscaped barriers, retractable bollards, widened sidewalks, setback café zones) combined with pedestrian experience analysis and emergency access planning to balance protection and livability
D) Install visible concrete blocks everywhere

Created with That Quiz — the math test generation site with resources for other subject areas.