Certified Information Security Manager (CISM) Practice Exam

Personnel security begins during the pre-employment phase, which is crucial for establishing a solid foundation for the security of an organization. This phase encompasses various background checks and evaluations designed to assess the reliability and trustworthiness of potential employees before they join the organization. By conducting thorough pre-employment checks, organizations can identify potential risks associated with candidates and mitigate them before they are hired. This proactive approach ensures that the organization brings in individuals who are less likely to pose security threats and increases the overall integrity of its workforce.

In contrast, the other options suggest that personnel security starts later in the process. For example, full onboarding typically focuses on integrating the employee into the organization and may not address security concerns explicitly. Initial training sessions and the 30-day mark are post-hiring activities and do not focus on evaluating or screening individuals before they become part of the workforce, which is a fundamental aspect of personnel security.