Domain 7 of 8 · Chapter 15 of 15

Personnel Safety

Unlock the complete study guide + 1,040 practice questions across 16 full exams.

Bundled into the existing Certified Information Systems Security Professional premium course — no separate purchase.

Included in this chapter:

  • Life safety first: the principle that overrides every asset
  • Emergency management, duress, and travel mechanics
  • Exam-pattern recognition

Failure mode by what the door's job is

Door / control roleCorrect failure modeWhyGoverning priority
Life-safety egress (fire exit, evacuation door)Fail-open (fail-safe): unlocks on failureA trapped occupant is the greater harm; people must always be able to leaveAvailability of egress = human life
Access-control entry (secure door, data center)Fail-secure (fail-closed): stays locked on failureAn unguarded open door is the greater harm; deny entry when control is lostConfidentiality / integrity of assets
Coerced-entry signaling (duress)Behave normally, alert silentlyAn obvious refusal endangers the coerced person; the attacker must see nothingSafety of the threatened person

Cheat sheet

  • Human safety is the overriding priority and outranks every asset
  • No one re-enters a dangerous building to retrieve or protect data
  • A life-safety egress door must fail-open, not fail-secure
  • "Fail-safe" flips direction depending on whether the greater harm is to people or assets
  • OT and ICS treat safety as an overarching priority above the CIA ordering
  • An occupant emergency plan documents how people get out safely
  • Evacuate and account for people first; consider property only afterward
  • Safety wardens direct the evacuation and take the headcount at the muster point
  • Emergency power and emergency lighting keep egress usable when normal power fails
  • A duress code signals coercion silently while behaving like the normal code
  • A panic button raises a silent alarm for a coerced or threatened person
  • For risky travel, carry clean burner devices that hold no sensitive data
  • Encrypt, enforce strong MFA, and use privacy screens against shoulder-surfing while traveling
  • MFA-fatigue push-bombing wears a target into approving a malicious prompt
  • Social-media oversharing can expose a traveler's location and itinerary to a threat
  • An insider carrying data abroad is a personnel-safety-relevant insider-threat case
  • A duress control addresses coercion that a lock, camera, or extra factor cannot

Unlock with Premium — includes all practice exams and the complete study guide.

References

  1. NIST/CNSSI 4009: Fail Safe (glossary term) Whitepaper
  2. NIST SP 800-82 Rev. 3: Guide to Operational Technology (OT) Security Whitepaper
  3. OSHA 29 CFR 1910.38: Emergency Action Plans
  4. NIST SP 800-53 Rev. 5: Security and Privacy Controls (Physical and Environmental Protection family) Whitepaper