Joint Staff Operations Security (OPSEC) Exam Test Questions with
Verified Answers Graded A
1. Work related information posted to social networking sites or discussed
in public may create that can be exploited by the unauthorized
recipient.
-Threats
-Indicators
-Vulnerabilities
-Risk: -Vulnerabilities
2. Which is not an example of an OPSEC countermeasure?
-Make indicators seem unimportant.
-Minimize predictable patterns.
-Protecting critical information.
-Sudden change to a predictable routine.: -Sudden change to a predictable
routine.
3. Match the five-step OPSEC process with the action associated with the
step.
a) This step identifies the information that must be protected and why it needs
to be protected.
b) Identifies who the unauthorized recipient is, the intentions of the unautho-
rized recipient, and the unauthorized recipient's capabilities.
c) Identifies the actions that need to be taken to protect critical information.
d) Identifies the impact to the mission if the unauthorized recipient exploits a
vulnerability and the overall impact of the unauthorized recipient learning our
critical information.
e) Identifies the weaknesses the unauthorized recipient can exploit to uncover
critical information.: A - Identify critical information
B - Analyze threats
D - Analyze vulnerabilities
C - Assess risks
E - Apply countermeasures
4. What is OPSEC? (Select all that apply)
-Part of everyone's job - including yours.
-Only applies to work and is not applicable to my personal life.
-A process, not a set of rules.
-A method for denying an adversary access to our critical information.: -Part
of everyone's job - including yours.
-A process, not a set of rules.
-A method for denying an adversary access to our critical information.
5. are like pieces of a puzzle an adversary uses to reveal a
picture of our operations.
1/3
Verified Answers Graded A
1. Work related information posted to social networking sites or discussed
in public may create that can be exploited by the unauthorized
recipient.
-Threats
-Indicators
-Vulnerabilities
-Risk: -Vulnerabilities
2. Which is not an example of an OPSEC countermeasure?
-Make indicators seem unimportant.
-Minimize predictable patterns.
-Protecting critical information.
-Sudden change to a predictable routine.: -Sudden change to a predictable
routine.
3. Match the five-step OPSEC process with the action associated with the
step.
a) This step identifies the information that must be protected and why it needs
to be protected.
b) Identifies who the unauthorized recipient is, the intentions of the unautho-
rized recipient, and the unauthorized recipient's capabilities.
c) Identifies the actions that need to be taken to protect critical information.
d) Identifies the impact to the mission if the unauthorized recipient exploits a
vulnerability and the overall impact of the unauthorized recipient learning our
critical information.
e) Identifies the weaknesses the unauthorized recipient can exploit to uncover
critical information.: A - Identify critical information
B - Analyze threats
D - Analyze vulnerabilities
C - Assess risks
E - Apply countermeasures
4. What is OPSEC? (Select all that apply)
-Part of everyone's job - including yours.
-Only applies to work and is not applicable to my personal life.
-A process, not a set of rules.
-A method for denying an adversary access to our critical information.: -Part
of everyone's job - including yours.
-A process, not a set of rules.
-A method for denying an adversary access to our critical information.
5. are like pieces of a puzzle an adversary uses to reveal a
picture of our operations.
1/3
