ABSTRACT
This chapter describes the cross-cutting functions that are needed to underpin the pre-trust and in-trust measures in any personnel security system. The main types of capabilities and attributes that provide these foundations are governance, ethics, leadership, management, deterrence communication, risk management, incident and crisis management, security culture, asset management, information sharing, and assurance. For a personnel security system to be effective, it should have good governance (with clear lines of accountability, responsibility, and authority), ethical leadership, competent management, dynamic risk assessment, systematic information sharing, independent assurance, and a positive security culture, among other things.
