By Quizzma Team / Technology. I may decide not to consent to these terms, but, if I do not consent to all of these terms, then I agree not to proceed with creating an account or moving forward with filling out the application, and I understand that I will not be . Which of the following is true about unclassified data? Store it in a shielded sleeve to avoid chip cloning. **Classified Data Which of the following is true of protecting classified data? Classified material must be appropriately marked. CPCON 3 (Medium: Critical, Essential, and Support Functions) Which of the following is true of telework? What should you do? A Progressive Plane Detection Filtering Method for Airborne LiDAR Data They can be part of a distributed denial-of-service (DDoS) attack. Which of the following is true of protecting classified data? **Insider Threat What is an insider threat? Understanding and using the available privacy settings. If possible, set your browser preferences to prompt you each time a website wants to store a cookie. Sensitive information may be stored on any password-protected system. Ensure there are no identifiable landmarks visible in any photos taken in a work setting that you post. What is the best choice to describe what has occurred? Do not access links or hyperlinked media such as buttons and graphics in email messages. Look for a digital signature on the email. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. Directing you to a website that looks real. Identification, encryption, and digital signature. Do not access website links, buttons, or graphics in e-mail. Course Introduction Introduction . not correct. What information most likely presents a security risk on your personal social networking profile? John submits CUI to his organizations security office to transmit it on his behalf. Which of the following is a good practice to avoid email viruses? Retrieve classified documents promptly from printers. What should you do to protect classified data? A colleague saves money for an overseas vacation every year, is a . What should you do if someone asks to use your government issued mobile device (phone/laptop..etc)? You should only accept cookies from reputable, trusted websites. Which of the following is NOT a typical means for spreading malicious code? Seeker - Vacancy - Detail Overview (Sensitive Information) What type of unclassified material should always be marked with a special handling caveat? After you have returned home following the vacation. The Following Is True About Unclassified Data - faqcourse.com Any time you participate in or condone misconduct, whether offline or online. No. Which of these is true of unclassified data?-It must be released to the public immediately.-Its classification level may rise when aggregated. . **Insider Threat Which of the following should be reported as a potential security incident? (Malicious Code) Which email attachments are generally SAFE to open? Correct. Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? -It never requires classification markings. What type of activity or behavior should be reported as a potential insider threat? Maintain visual or physical control of the device. (Malicious Code) Upon connecting your Government-issued laptop to a public wireless connection, what should you immediately do? Which is an untrue statement about unclassified data? Power off any mobile devices when entering a secure area. The National Archives and Records Administration (NARA) serves as the Controlled Unclassified Information (CUI) Executive Agent (EA). Like the number of people in a class, the number of fingers on your hands, or the number of children someone has. Which designation marks information that does not have potential to damage national security? correct. (Home computer) Which of the following is best practice for securing your home computer? Ctrl+F (Cmd+F) will help you a lot when searching through such a large set of questions. All https sites are legitimate. -Classified information that should be unclassified and is downgraded. NARA has the authority and responsibility to manage the CUI Program across the Federal government. Use only personal contact information when establishing your personal account. *Spillage After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. -It must be released to the public immediately. **Physical Security What is a good practice for physical security? DoD Cyber Awareness 2019 - Subjecto.com What is the best course of action? This button displays the currently selected search type. **Social Networking When is the safest time to post details of your vacation activities on your social networking website? If authorized, what can be done on a work computer? (Sensitive Information) What should you do if a commercial entity, such as a hotel reception desk, asks to make a photocopy of your Common Access Card (CAC) for proof of Federal Government employment? Correct. After clicking on a link on a website, a box pops up and asks if you want to run an application. **Social Engineering Which is a best practice that can prevent viruses and other malicious code from being downloaded when checking your e-mail? Which of the following demonstrates proper protection of mobile devices? *Sensitive Compartmented Information Which of the following best describes the compromise of Sensitive Compartmented Information (SCI)? **Insider Threat Which scenario might indicate a reportable insider threat? A type of phishing targeted at high-level personnel such as senior officials. Which of the following is true of internet hoaxes? Which of the following should you NOT do if you find classified information on the internet? You receive an email from the Internal Revenue Service (IRS) demanding immediate payment of back taxes of which you were not aware. CUI is not classified information. Report the crime to local law enforcement. Which of the following is a good practice to prevent spillage? Mobile devices and applications can track your location without your knowledge or consent. Media containing Privacy Act information, PII, and PHI is not required to be labeled. Exceptionally grave damage. **Insider Threat What function do Insider Threat Programs aim to fulfill? **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sites visited? Which piece of information is safest to include on your social media profile? Some examplesyou may be familiar with: TheFederalCUI Registry,shows authorized categoriesandassociated markings, as well as applicable safeguarding, dissemination, and decontrol procedures. **Identity management Which is NOT a sufficient way to protect your identity? It is not corporate intellectual property unless created for or included in requirements related to a government contract. Aggregating it does not affect its sensitivyty level. What certificates are contained on the DoD Public Key Infrastructure (PKI) implemented by the Common Access Card (CAC)/Personal Identity Verification (PIV) card? Correct. CUI includes, but is not limited to Controlled Technical Information (CTI), Personally Identifiable Information (PII), Protected Health Information (PHI), financial information, personal or payroll information, proprietary data and operational information. **Home Computer Security What should you consider when using a wireless keyboard with your home computer? At all times while in the facility. Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIV) card. Managing government information when working remotely It is created or received by a healthcare provider, health plan, or employer. **Insider Threat Which of the following should be reported as a potential security incident (in accordance with you Agencys insider threat policy)? Quizzma is a free online database of educational quizzes and test answers. **Identity Management Your DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. THIS IS THE BEST ANSWER . 1.1.3 Insider Threat. Delete email from senders you do not know. Executive Order 13556, Controlled Unclassified Information, requires the Executive Branch to establish an open and uniform program for managing [unclassified] information that requires safeguarding or dissemination controls pursuant to and consistent with laws, regulations, and Government-wide policies. The National Archives and Records Administration (NARA) was named the Executive Agent (EA) responsible for overseeing the CUI Program. PDF Cyber Awareness Challenge 2022 Information Security What is a proper response if spillage occurs? Top Secret information could be expected to cause exceptionally grave damage to national security of disclosed. What describes how Sensitive Compartmented Information is marked? You receive an unexpected email from a friend: "I think you'll like this: (URL)" What action should you take? Which of the following is NOT true concerning a computer labeled SECRET? Which of the following is NOT considered sensitive information? Always take your CAC when you leave your workstation. What is the best example of Protected Health Information (PHI)? Which of the following is true of protecting classified data Use only personal contact information when establishing personal social networking accounts, never use Government contact information. A Common Access Card and Personal Identification Number. ?Access requires Top Secret clearance and indoctrination into SCI program.??? Enable automatic screen locking after a period of inactivity. CPCON 1 (Very High: Critical Functions) ALways mark classified information appropriately and retrieve classified documents promptly from the printer. A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. *Spillage Which of the following is a good practice to aid in preventing spillage? What action should you take? *Spillage After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Keeping a database from being accessed by unauthorized visitors C. Restricting a subject at a lower classification level from accessing data at a higher classification level D. Preventing an . They may be used to mask malicious intent. **Removable Media in a SCIF What portable electronic devices (PEDs) are allowed in a Sensitive Compartmented Information Facility (SCIF)? You may use your personal computer as long as it is in a secure area in your home b. (Spillage) When classified data is not in use, how can you protect it? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. It displays a label showing maximum classification, date of creation, point of contact, and Change Management 9CM) Control Number. E-mailing your co-workers to let them know you are taking a sick day. For example, when you buy propane for your barbecue, your tank is placed on a scale while it is filled under high pressure (Figure 7). Based on the description that follows, how many potential insider threat indicator (s) are displayed? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. Third, the neighbor ground points of an unclassified point are searched from multiple subspaces. Protection may be required for privacy, law enforcement, contractual protections, or other reasons. Annual DoD Cyber Awareness Challenge Training, DOD Cyber Awareness Challenge 2019: Knowledge, DOD Cyber Awareness Challenge 2019 (DOD-IAA-V, Operations Management: Sustainability and Supply Chain Management, Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson, Anderson's Business Law and the Legal Environment, Comprehensive Volume, David Twomey, Marianne Jennings, Stephanie Greene. Back up your data: This will help you recover your data if it's lost or corrupted. CPCON 5 (Very Low: All Functions). Which is a good practice to protect classified information? Correct, Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. Which of the following should be done to keep your home computer secure? Which of the following is NOT a correct way to protect sensitive information? Don't talk about work outside your workspace unless it is a specifically designated public meeting environment and is controlled by the event planners. Which of the following should be reported as a potential security incident (in accordance with your Agencys insider threat policy)? "Unclassified" or a lack of security marking denotes non-sensitive information. Which of the following is NOT an example of sensitive information? What should you do? Never write down the PIN for your CAC. *Controlled Unclassified Information Which of the following is NOT an example of CUI? The date of full implementation of the CUI Program will be announced by the EPAs CUI Senior Agency Official (CUI SAO) and updated here on EPAs public web page. Not correct SSN, date and place of birth, mothers maiden name, biometric records, PHI, passport number, Subset of PII, health information that identifies the individual, relates to physical or mental health of an individual, provision of health care to an individual, or payment of healthcare for individual. Classified information is defined in PL 96-456, the Classified Information Procedures Act: You know this project is classified. Only paper documents that are in open storage need to be marked. Which of the following should you do immediately? That trust is bounded by the Oath of Office we took willingly. When expanded it provides a list of search options that will switch the search inputs to match the current selection. Three or more. Malicious code can include viruses, worms, and macros. Definition 1 / 24 -It must be released to the public immediately. Which of the following is true about unclassified data? **Use of GFE Under what circumstances is it acceptable to use your Government-furnished computer to check personal e-mail and do other non-work-related activities? Note any identifying information and the websites URL. You have reached the office door to exit your controlled area. (Sensitive Information) Which of the following represents a good physical security practice? It never requires classification markings, is true about unclassified data. Which is NOT a method of protecting classified data? Research the source to evaluate its credibility and reliability. **Removable Media in a SCIF What action should you take when using removable media in a Sensitive Compartmented Information Facility (SCIF)? What should you do if someone forgets their access badge (physical access)? Hostility or anger toward the United States and its policies. Which of the following is an example of a strong password? Note any identifying information, such as the website's URL, and report the situation to your security POC. When your vacation is over, after you have returned home. **Social Engineering Which may be a security issue with compressed Uniform Resource Locators (URLs)? Cyber Awareness Flashcards by Jedi Master | Brainscape Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. Connect to the Government Virtual Private Network (VPN). Your cousin posted a link to an article with an incendiary headline on social media. As part of the survey the caller asks for birth date and address. Set hasDigit to true if the 3-character passCode contains a digit, Critical, Essential, and Support Functions. Changes to various data systems that store and sometimes share sensitive information outside EPA. This answer has been confirmed as correct and helpful. Validate friend requests through another source before confirming them. Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? Sensitive information may be stored on any password-protected system. A pop-up window that flashes and warns that your computer is infected with a virus. When leaving your work area, what is the first thing you should do? Which of the following is NOT an example of Personally Identifiable Information (PII)? **Classified Data When classified data is not in use, how can you protect it? What should you do if a reporter asks you about potentially classified information on the web? CUI may be stored on any password-protected system. Store it in a locked desk drawer after working hours. We recommend Norton Security or McAfee Total Protection. Which of the following is NOT a security best practice when saving cookies to a hard drive? After you have returned home following the vacation. 1 Answer/Comment. Correct. How do you think antihistamines might work? Do not use any personally owned/non-organizational removable media on your organizations systems. Secure .gov websites use HTTPS Write your password down on a device that only you access. Learn more about Teams What is a possible indication of a malicious code attack in progress? **Removable Media in a SCIF What must users ensure when using removable media such as compact disk (CD)? A colleague removes sensitive information without seeking authorization in order to perform authorized telework. Prudence faxes CUI using an Unclassified cover sheet via a Secret fax machine. Matt Monroe, a 20-year U. S. Air Force veteran and current operations manager at Omnistruct, explains the breakdown, "There are four classified information categories in the military based on the severity of damage that the information's release would cause. CUI may be stored on any password-protected system. Which of the following is true of Controlled Unclassified information (CUI)? How many potential insider threat indicators does this employee display? What does Personally Identifiable Information (PII) include? Request the users full name and phone number. Adversaries exploit social networking sites to disseminate fake news. **Social Networking Which piece if information is safest to include on your social media profile? Which Of The Following Statements About Adding Social Networks To Hootsuite Is False? Which of the following is a practice that helps to protect you from identity theft? Use personal information to help create strong passwords. You must have your organization's permission to telework c. You may use unauthorized software as long as your computer's antivirus software is up to date. the following is true about unclassified data fy23 controlled unclassified information cui quizlet what is true of controlled unclassified information What. A coworker has asked if you want to download a programmers game to play at work. It is releasable to the public without clearance. All to Friends Only. Official websites use .gov Which is an untrue statement about unclassified data? Which of the following is not considered a potential insider threat indicator? When classified data is not in use, how can you protect it? Maria is at home shopping for shoes on Amazon.com. What information posted publicly on your personal social networking profile represents a security risk? Only paper documents that are in open storage need to be marked. *Spillage You find information that you know to be classified on the Internet. New interest in learning another language, Which of the following is a good practice to protect classified information. When operationally necessary, owned by your organization, and approved by the appropriate authority. **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sires visited? Which of these are true of unclassified data? - Answers Search by Location. While it may seem safer, you should NOT use a classified network for unclassified work. It includes a threat of dire circumstances. Discrete data involves whole numbers (integers - like 1, 356, or 9) that can't be divided based on the nature of what they are. What should be done to protect against insider threats? On a NIPRNet system while using it for a PKI-required task, Something you possess, like a CAC, and something you know, like a PIN or password. Correct. Which of the following may help to prevent spillage? Where. *Sensitive Compartmented Information What must the dissemination of information regarding intelligence sources, methods, or activities follow? Which of the following is a proper way to secure your CAC/PIV? Neither confirm or deny the information is classified. Information improperly moved from a higher protection level to a lower protection level. Hostility or anger toward the United States and its policies. Before long she has also purchased shoes from several other websites. A type of phishing targeted at senior officials. Working With Sensitive Information - Canada.ca The challenges goal is simple: To change user behavior to reduce the risks and vulnerabilities DoD Information Systems face. Controlled Unclassified Information (CUI): Controlled Unclassified information was defined in the Executive Order 13556 as information held by or generated for the Federal Government that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations and government-wide policies that isn't classified Search for an answer or ask Weegy. **Physical Security At which Cyberspace Protection Condition (CPCON) is the priority focus on critical functions only? P2P (Peer-to-Peer) software can do the following except: Allow attackers physical access to network assets. not correct Identify and disclose it with local Configuration/Change Management Control and Property Management authorities. Do not forward, read further, or manipulate the file; Do not give out computer or network information, Do not follow instructions from unverified personnel. In which situation below are you permitted to use your PKI token? Which of the following personally-owned computer peripherals is permitted for use with Government-furnished equipment? The EPAs Controlled Unclassified Information (CUI) Program issued its Interim CUI Policy in December 2020. **Social Engineering What is TRUE of a phishing attack? NARAissuespolicy directives and publishesan annualreportto the President of the United Stateson the status of agency CUI Program implementation in accordance with Executive Order 13556, Controlled Unclassified Information. Data about you collected from all sites, apps, and devices that you use can be aggregated to form a profile of you. (Insider Threat) A colleague vacations at the beach every year, is married and a father of four, his work quality is sometimes poor, and he is pleasant to work with. A coworker uses a personal electronic device in a secure area where their use is prohibited. Phishing can be an email with a hyperlink as bait. **Social Engineering Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? Which of the following is true of transmitting Sensitive Compartmented Information (SCI)? Ask them to verify their name and office number. **Insider Threat Based on the description that follows, how many potential insider threat indicator(s) are displayed? Unauthorized Disclosure of Classified Information for DoD, Security Awareness: Derivative Classification Answers, CITI Ethics, Responsible Conduct, RCR, Law, HTH And IRB Answers, EVERFI Achieve Consumer Financial Education Answers, Security Pro: Chapter 3 (3.1.8) & 4.1 Security Policies Answers, CITI Module #3 Research in Public Elementary and Secondary Schools, Answers to CTS Unit 7 Lab 7-2: Protocols and Services SNMP, Google Analytics Individual Qualification Exam Answers, Everfi Module 4 Credit Scores Quiz Answers, Which Of The Following Is Not Considered A Potential Insider Threat Indicator. Controlled Unclassified Information (CUI) is information that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations, and government-wide policies but is not classified under Executive Order 13526 or the Atomic Energy Act, as amended. Research the source of the article to evaluate its credibility and reliability. The following table lists the number of drivers in the United States, the number of fatal accidents, and the number of total accidents in each age group in 2002. How many potential insiders threat indicators does this employee display? not correct What should be your response? (Correct) -It does not affect the safety of Government missions. f. Get an answer. which of the following is true about unclassified data Social Security Number; date and place of birth; mothers maiden name. Under what circumstances could unclassified information be considered a threat to national security? **Mobile Devices What should you do when going through an airport security checkpoint with a Government-issued mobile device? Which of the following is true of Sensitive Compartmented Information (SCI)? 10-3 X-ray Interaction with Matter, Fundamentals of Engineering Economic Analysis, David Besanko, Mark Shanley, Scott Schaefer. DoD Unclassified data: Must be cleared before being released to the public May require applci aton i of Controled l Uncasl sed Iifi nformaton i (CU)I access and distribution controls Must be clearly marked as Unclassified or CUI if included in a classified document or classified storage area Classified information that should be unclassified and is downgraded. CPCON 2 (High: Critical and Essential Functions) How can you guard yourself against Identity theft?
Family Reunion Gift Ideas,
Certificate Of Appreciation For Pastor Guest Speaker,
Tom Mcculloch Buck,
Amalgamous Definition,
Articles W