CSM CSM Physical Security & Access Control

Question 1

Which access control model grants permissions based on an individual's job role within an organization?

Accepted Answer

Role-Based Access Control (RBAC)

Answer

Discretionary Access Control (DAC)

Answer

Mandatory Access Control (MAC)

Answer

Attribute-Based Access Control (ABAC)

Question 2

A security manager is designing a facility entry system requiring two independent authentication factors. This is an example of:

Accepted Answer

Multi-factor authentication (MFA)

Answer

Tailgating prevention

Answer

Biometric override

Answer

Mantrap deployment

Question 3

What physical security control is specifically designed to prevent one individual from following another through a secured entry point without authenticating?

Accepted Answer

Mantrap (airlock)

Answer

Turnstile

Answer

Guard booth

Answer

CCTV coverage

Question 4

Under the ASIS International standards, the 'defense in depth' principle in physical security refers to:

Accepted Answer

Layering multiple security controls so that failure of one does not compromise the entire system

Answer

Installing the deepest possible vault doors

Answer

Burying security cables underground

Answer

Conducting background checks at multiple levels

Question 5

Which document typically defines the authority levels, zones, and time-based access rules for a facility's access control system?

Accepted Answer

Access control matrix

Answer

Security incident report

Answer

Business continuity plan

Answer

Vulnerability assessment

Question 6

A security manager notices that employees are propping open secured doors for convenience. The BEST long-term corrective action is to:

Accepted Answer

Redesign workflows and entry points to eliminate the inconvenience driving the behavior

Answer

Issue disciplinary warnings to offenders

Answer

Add more cameras near the doors

Answer

Increase security patrols