Which of the following would be considered operational security?
Which of the following would be considered operational security?
Operational security refers to measures that safeguard sensitive information and ensure the integrity and security of operations. It includes strategies to protect against espionage, insider threats, and other intelligence risks. Background screening is a crucial aspect of operational security as it helps verify the trustworthiness of individuals who have access to sensitive information and operations, thereby reducing the risk of insider threats or espionage. While facility access is important, it is generally categorized under physical security rather than operational security.
B: background screening • Physical security - Mobile device considerations - Removable media considerations - Facility access • Operational security - Background screening - Clearance requirements • Digital security - Resource access and permissions - Remote access restrictions - Multifactor authentication
D. Facility access Operational security involves measures taken to ensure the physical security of facilities, equipment, and assets. Facility access controls, such as locks, access badges, security guards, and surveillance systems, are essential components of operational security. These measures help prevent unauthorized access to physical locations, protecting sensitive information, assets, and personnel within the facility. While options A, B, and C are all important aspects of security, they are more closely related to information security or cybersecurity rather than operational security. Mobile device compliance, background screening, and multifactor authentication are measures typically implemented to protect data, systems, and networks from unauthorized access, breaches, or misuse.
B: Background screening From the Sybex book (page 243): "Operational security includes policies for performing background checks and security clearances. The policy in this case should define the types of roles and responsibilities that require either a background check or a security clearance."
rbrad2100 is spot on
this could be both A and D