Vulnerability Assessment – Study Guide, Practice Questions &
Cybersecurity Exam Review
Vulnerability - ANS ✔✔...
Vulnerabilities are characteristics of an installation, unit, activity, port, ship, residence, facility, or
other site requiring consideration for improvement to withstand, mitigate, or deter against
CBRN threats and hazards. When improvements are not made, a risk-based approach to
defense and protection activities must be undertaken. The primary focus is to identify threats
and hazards critical to the success of the mission. - ANS ✔✔...
a. Once the credible threats are identified, a vulnerability assessment must be performed. The
CBRN vulnerability assessment considers the potential impact of loss from a successful attack
and the vulnerability of the facility/location to an attack. The impact of loss is the degree to
which the mission of the unit is impaired by a successful attack from the given threat. A key
component of the vulnerability assessment is properly defining the ratings for the impact of loss
and vulnerability. - ANS ✔✔...
b. CBRN vulnerability assessment provides insight into the ability of the unit to mitigate likely
CBRN threat situations and prompts the unit to develop procedures, acquire equipment, and/or
take other actions to correct vulnerabilities before the mission is adversely affected and/or
people are injured or killed. Knowing the risks and vulnerabilities in a CBRN environment allows
commanders to determine the unit situation and provide options to mitigate those
vulnerabilities. - ANS ✔✔...
c. The current and future CBRN threat and hazard is global in nature and ranges from low to
high intensity. Terrorists may be encountered at any level of conflict. The proliferation of CBRN-
capable nations in contingency regions and the ready availability of toxic CBRN materials
increase the likelihood of U.S. forces being direct or inadvertent targets of attack. These attacks
may range from limited use in terrorist actions to planned targeting in support of military
operations. - ANS ✔✔...
, d. When planning operations, commanders must consider the potential effects of CBRN
weapons on personnel and equipment. In conventional operations, the concentration of forces
increases the chance for success, but this same concentration increases the effects of CBRN
attacks and the likelihood of their occurrence. Commanders consider the timing of force
concentration to reduce the effects of a CBRN attack. - ANS ✔✔...
e. To assess a unit's vulnerability to a CBRN attack, the commander determines how well
protected the unit is and the type and size of weapon likely to be used against it. The
commander then weighs various COAs and determines which presents an acceptable risk to
allow mission accomplishment. This whole process starts with an initial assessment of the CBRN
threat during the IPOE/IPB and concludes with the CBRN staff identifying the friendly force,
mission-critical vulnerabilities and recommended vulnerability reduction measures. - ANS ✔✔...
C-02H02 CBRN Vulnerability Assessment Overview - ANS ✔✔...
Levels of Vulnerability Assessment - ANS ✔✔CBRN vulnerability assessment processes have two
levels of application: crisis action and deliberate. Time is the basic factor that contributes to the
selection of the level of application used
• Crisis action CBRN vulnerability assessment is an "on the run" mental or verbal review of the
situation, using the basic CBRN vulnerability assessment process. - ANS ✔✔The crisis action
CBRN vulnerability assessment process is employed to consider vulnerabilities and risks while
making decisions in a time-compressed situation
• This level of CBRN vulnerability assessment is used during the execution phase of training or
operations and in planning and execution during crisis responses. - ANS ✔✔...
• It is particularly helpful for choosing the appropriate COA when an unplanned event occurs. -
ANS ✔✔...
• Deliberate CBRN vulnerability assessment is the application of the complete vulnerability
assessment process when time is not critical. - ANS ✔✔...
Cybersecurity Exam Review
Vulnerability - ANS ✔✔...
Vulnerabilities are characteristics of an installation, unit, activity, port, ship, residence, facility, or
other site requiring consideration for improvement to withstand, mitigate, or deter against
CBRN threats and hazards. When improvements are not made, a risk-based approach to
defense and protection activities must be undertaken. The primary focus is to identify threats
and hazards critical to the success of the mission. - ANS ✔✔...
a. Once the credible threats are identified, a vulnerability assessment must be performed. The
CBRN vulnerability assessment considers the potential impact of loss from a successful attack
and the vulnerability of the facility/location to an attack. The impact of loss is the degree to
which the mission of the unit is impaired by a successful attack from the given threat. A key
component of the vulnerability assessment is properly defining the ratings for the impact of loss
and vulnerability. - ANS ✔✔...
b. CBRN vulnerability assessment provides insight into the ability of the unit to mitigate likely
CBRN threat situations and prompts the unit to develop procedures, acquire equipment, and/or
take other actions to correct vulnerabilities before the mission is adversely affected and/or
people are injured or killed. Knowing the risks and vulnerabilities in a CBRN environment allows
commanders to determine the unit situation and provide options to mitigate those
vulnerabilities. - ANS ✔✔...
c. The current and future CBRN threat and hazard is global in nature and ranges from low to
high intensity. Terrorists may be encountered at any level of conflict. The proliferation of CBRN-
capable nations in contingency regions and the ready availability of toxic CBRN materials
increase the likelihood of U.S. forces being direct or inadvertent targets of attack. These attacks
may range from limited use in terrorist actions to planned targeting in support of military
operations. - ANS ✔✔...
, d. When planning operations, commanders must consider the potential effects of CBRN
weapons on personnel and equipment. In conventional operations, the concentration of forces
increases the chance for success, but this same concentration increases the effects of CBRN
attacks and the likelihood of their occurrence. Commanders consider the timing of force
concentration to reduce the effects of a CBRN attack. - ANS ✔✔...
e. To assess a unit's vulnerability to a CBRN attack, the commander determines how well
protected the unit is and the type and size of weapon likely to be used against it. The
commander then weighs various COAs and determines which presents an acceptable risk to
allow mission accomplishment. This whole process starts with an initial assessment of the CBRN
threat during the IPOE/IPB and concludes with the CBRN staff identifying the friendly force,
mission-critical vulnerabilities and recommended vulnerability reduction measures. - ANS ✔✔...
C-02H02 CBRN Vulnerability Assessment Overview - ANS ✔✔...
Levels of Vulnerability Assessment - ANS ✔✔CBRN vulnerability assessment processes have two
levels of application: crisis action and deliberate. Time is the basic factor that contributes to the
selection of the level of application used
• Crisis action CBRN vulnerability assessment is an "on the run" mental or verbal review of the
situation, using the basic CBRN vulnerability assessment process. - ANS ✔✔The crisis action
CBRN vulnerability assessment process is employed to consider vulnerabilities and risks while
making decisions in a time-compressed situation
• This level of CBRN vulnerability assessment is used during the execution phase of training or
operations and in planning and execution during crisis responses. - ANS ✔✔...
• It is particularly helpful for choosing the appropriate COA when an unplanned event occurs. -
ANS ✔✔...
• Deliberate CBRN vulnerability assessment is the application of the complete vulnerability
assessment process when time is not critical. - ANS ✔✔...