-TRUE The use of webmail is -is only allowed if the organization permits it Using webmail may bypass built in security features. What function do Insider Threat Programs aim to fulfill? What describes how Sensitive Compartmented Information is marked? Darryl is managing a project that requires access to classified information. Secure personal mobile devices to the same level as Government-issued systems. Store it in a locked desk drawer after working hours. Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIC) card. Which is it appropriate to have your security badge visible within a Sensitive Compartmented Information Facility (SCIF). b. a. DoD Unclassified data: Must be cleared before being released to the public May require applci aton i of Controled l Uncasl sed Iifi nformaton i (CU)I access and distribution controls Must be clearly marked as Unclassified or CUI if included in a classified document or classified storage area Which of the following is true of telework? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. Decline So That You Maintain Physical Control of Your Government-Issued Laptop. What level of damage can the unauthorized disclosure of information classified as Top Secret reasonably be expected to cause? (Wrong). Physical security of mobile phones carried overseas is not a major issue. Which may be a security issue with compressed Uniform Resource Locators (URLs)? Note the websites URL and report the situation to your security point of contact. Which of the following should you do immediately? (Sensitive Information) Which of the following is NOT an example of sensitive information? What security device is used in email to verify the identity of sender? As long as the document is cleared for public release, you may share it outside of DoD. A coworker is observed using a personal electronic device in an area where their use is prohibited. -It must be released to the public immediately. They broadly describe the overall classification of a program or system. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. **Home Computer Security Which of the following is a best practice for securing your home computer? What action should you take first? Remove and take it with you whenever you leave your workstation. It never requires classified markings, it is true about unclassified data. (Sensitive Information) Which of the following is true about unclassified data? Correct. (Sensitive Information) Which of the following represents a good physical security practice? Which of the following is true of Sensitive Compartmented Information (SCI)? It is not corporate intellectual property unless created for or included in requirements related to a government contract. Which of the following actions is appropriate after finding classified Government information on the internet? Unauthorized Disclosure of Classified Information for DoD, Security Awareness: Derivative Classification Answers, CITI Ethics, Responsible Conduct, RCR, Law, HTH And IRB Answers, EVERFI Achieve Consumer Financial Education Answers, Security Pro: Chapter 3 (3.1.8) & 4.1 Security Policies Answers, CITI Module #3 Research in Public Elementary and Secondary Schools, Answers to CTS Unit 7 Lab 7-2: Protocols and Services SNMP, Google Analytics Individual Qualification Exam Answers, Everfi Module 4 Credit Scores Quiz Answers, Which Of The Following Is Not Considered A Potential Insider Threat Indicator. Let us know if this was helpful. P2P (Peer-to-Peer) software can do the following except: Allow attackers physical access to network assets. The challenges goal is simple: To change user behavior to reduce the risks and vulnerabilities DoD Information Systems face. **Classified Data Which of the following is true of protecting classified data? Don't talk about work outside your workspace unless it is a specifically designated public meeting environment and is controlled by the event planners. **Home Computer Security How can you protect your information when using wireless technology? Which piece of information is safest to include on your social media profile? Debra ensures not correct While you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Your password and a code you receive via text message. Only allow mobile code to run from your organization or your organizations trusted sites. Ask for information about the website, including the URL. *Sensitive Compartmented Information Which of the following best describes the compromise of Sensitive Compartmented Information (SCI)? **Social Networking Which of the following is a security best practice when using social networking sites? E-mailing your co-workers to let them know you are taking a sick day. not correct. Which of the following is NOT Government computer misuse? Figure 1. You receive an unexpected email from a friend: I think youll like this: https://tinyurl.com/2fcbvy. What action should you take? *Spillage Which of the following actions is appropriate after finding classified information on the Internet? Which Cyber Protection Condition (CPCON) establishes a protection priority focus on critical functions only? CPCON 3 (Medium: Critical, Essential, and Support Functions) February 8, 2022. **Classified Data When classified data is not in use, how can you protect it? Which of the following does NOT constitute spillage? Preventing an authorized reader of an object from deleting that object B. Since the URL does not start with https, do not provide your credit card information. This is information that, if released to the public, carries no injury to personal, industry, or government interests. The Chinese Spy Balloon Showdown The discovery of a Chinese surveillance balloon floating over the United States has added to the rising tensions between the two superpowers. Definition 1 / 24 -It must be released to the public immediately. What level of damage to national security can you reasonably expect Top Secret information to cause if disclosed? (Spillage) What is required for an individual to access classified data? Which of the following statements is true? What can be used to track Marias web browsing habits? Which of the following is true of using DoD Public key Infrastructure (PKI) token? CUI includes, but is not limited to Controlled Technical Information (CTI), Personally Identifiable Information (PII), Protected Health Information (PHI), financial information, personal or payroll information, proprietary data and operational information. asked in Internet by voice (265k points) Question : Which of the following is true about unclassified data? Matt Monroe, a 20-year U. S. Air Force veteran and current operations manager at Omnistruct, explains the breakdown, "There are four classified information categories in the military based on the severity of damage that the information's release would cause. *Controlled Unclassified Information Which is a best practice for protecting Controlled Unclassified Information (CUI)? A man you do not know is trying to look at your Government-issued phone and has asked to use it. A colleague saves money for an overseas vacation every year, is a . Confirm the individuals need-to-know and access. the following is true about unclassified data fy23 controlled unclassified information cui quizlet what is true of controlled unclassified information What. Be aware of classification markings and all handling caveats. Research the source of the article to evaluate its credibility and reliability. **Insider Threat Which of the following should be reported as a potential security incident? *Sensitive Compartmented Information When faxing Sensitive Compartmented Information (SCI), what actions should you take? When unclassified data is aggregated, its classification level may rise. What should be your response? How many potential insider threat indicators does this employee display? A measure of how much useful work each unit of input energy provides. What type of data must be handled and stored properly based on classification markings and handling caveats? What should you do? To determine premiums for automobile insurance, companies must have an understanding of the variables that affect whether a driver will have an accident. cyber-awareness. What does Personally Identifiable Information (PII) include? Official websites use .gov You can't have 1.9 children in a family (despite what the census might say ). What is the response to an incident such as opening an uncontrolled DVD on a computer in a SCIF. Use only personal contact information when establishing personal social networking accounts, never use Government contact information. Sensitive information may be stored on any password-protected system. asked in Internet by voice (265k points) internet. (Spillage) What advantages do insider threats have over others that allows them to cause damage to their organizations more easily? If you receive a phone call from a stranger asking for information about your invoice payment process, you should: Crucial information about a user or organization can be gained through. When your vacation is over, and you have returned home. **Social Engineering How can you protect yourself from internet hoaxes? Unclassified information cleared for public release. Attachments contained in a digitally signed email from someone known. Controlled Unclassified Information (CUI) is informationthat requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies, but is not classified under Executive Order 13526 "Classified National Security Informat What are examples of CUI? What would you do if you receive a game application request on your government computer that includes permission to access your friends, profile information, cookies, and sites visited? (Malicious Code) What are some examples of removable media? -Its classification level may rise when aggregated. What is required for an individual to access classified data? It is permissible to release unclassified information to the public prior to being cleared. (Spillage) After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. What should you do? Is this safe? Unclassified is a security classification assigned to official information that does not warrant the assignment of Confidential, Secret, or Top Secret markings but which is not publicly-releasable without authorization. Since the URL does not start with https, do not provide you credit card information. Executive Order 13556, Controlled Unclassified Information, requires the Executive Branch to establish an open and uniform program for managing [unclassified] information that requires safeguarding or dissemination controls pursuant to and consistent with laws, regulations, and Government-wide policies. The National Archives and Records Administration (NARA) was named the Executive Agent (EA) responsible for overseeing the CUI Program. Everything you need to know aboutControlled UnclassifiedInformation(CUI). What is the best course of action? You have reached the office door to exit your controlled area. **Identity management Which is NOT a sufficient way to protect your identity? Which of the following is a concern when using your Government-issued laptop in public? internet. Search *Sensitive Compartmented Information What is Sensitive Compartmented Information (SCI)? Never allow sensitive data on non-Government-issued mobile devices. (Malicious Code) Upon connecting your Government-issued laptop to a public wireless connection, what should you immediately do? Which scenario might indicate a reportable insider threat? Which is a way to protect against phishing attacks? Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIV) card. **Social Networking When may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? cyber. You many only transmit SCI via certified mail. How can you avoid downloading malicious code? What should be your response? Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. not correct. Which of the following is NOT true of traveling overseas with a mobile phone? Unusual interest in classified information. Thats the only way we can improve. Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? which of the following is true about unclassified data. Which of the following does not constitute spillage. Bob, a coworker, has been going through a divorce, has financial difficulties and is displaying hostile behavior. What is the danger of using public Wi-Fi connections? Click on "Open File". Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. What is best practice while traveling with mobile computing devices? Secure it to the same level as Government-issued systems. Which of the following is true about telework? Government-owned PEDs, if expressly authorized by your agency. **Social Networking Which piece if information is safest to include on your social media profile? What should you do? What is considered ethical use of the Government email system? What should you do? CPCON 1 (Very High: Critical Functions) Your DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approves for access to the NIPRNET. *Spillage After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Which Of The Following Statements About Adding Social Networks To Hootsuite Is False? Which of the following makes Alexs personal information vulnerable to attacks by identity thieves? correct. Which of the following practices reduces the chance of becoming a target by adversaries seeking insider information? The website requires a credit card for registration. What should you do? What should you do? **Identity management What is the best way to protect your Common Access Card (CAC)? DOD Cyber Awareness 2021 (DOD-IAA-V18.0) Know, RT202: Ch. **Physical Security At which Cyberspace Protection Condition (CPCON) is the priority focus on critical functions only? Spear Phishing attacks commonly attempt to impersonate email from trusted entities. How should you protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? (social networking) When may you be subjected to criminal, disciplinary, and/or administrative action due to online misconduct? Personal information is inadvertently posted at a website. which of the following is true about unclassified Courses 442 View detail Preview site *Sensitive Compartmented Information What must the dissemination of information regarding intelligence sources, methods, or activities follow? *Spillage Which of the following is a good practice to aid in preventing spillage? When would be a good time to post your vacation location and dates on your social networking website? When classified data is not in use, how can you protect it? Unclassified information can become a threat to national security. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. you don't need to do anything special to protect this information *Sensitive Information Which of the following is the best example of Personally Identifiable Information (PII)? You may use your personal computer as long as it is in a secure area in your home b. Which of the following best describes wireless technology? This answer has been confirmed as correct and helpful. Which of the following is true of transmitting Sensitive Compartmented Information (SCI)? What level of damage can the unauthorized disclosure of information classified as confidential reasonably be expected to cause? Remove your security badge after leaving your controlled area or office building. When checking in at the airline counter for a business trip, you are asked if you would like to check your laptop bag. Correct. Which of the following is NOT a correct way to protect sensitive information? CUI was established to standardize the way the Executive branch handles sensitive information that requires dissemination controls. (Spillage) When is the safest time to post details of your vacation activities on your social networking website? If authorized, what can be done on a work computer? Only paper documents that are in open storage need to be marked. The emission rate of CO 2 from the soils reached the maximum on the 1st day of incubation and the sequence of CO 2 emission rate and cumulative emission under different amendment treatments was as SG > S > G > CK > N (Fig. You should only accept cookies from reputable, trusted websites. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. Which of the following is NOT sensitive information? Which of the following individuals can access classified data? What information should you avoid posting on social networking sites? Research the source to evaluate its credibility and reliability. Assuming open storage is always authorized in a secure facility. Which scenario might indicate a reportable insider threat security incident? You receive an email from the Internal Revenue Service (IRS) demanding immediate payment of back taxes of which you were not aware. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. Always use DoD PKI tokens within their designated classification level. Mark SCI documents appropriately and use an approved SCI fax machine. Which of the following is a clue to recognizing a phishing email? The questions are broken into the following sections: Controlled Unclassified Information (CUI) isinformation that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies,but is not classified underExecutive Order 13526 Classified National Security Informationorthe Atomic Energy Act, as amended. When is the best time to post details of your vacation activities on your social networking website? How Do I Answer The CISSP Exam Questions? (Malicious Code) What is a good practice to protect data on your home wireless systems? (Identity Management) What certificates are contained on the Common Access Card (CAC)? (Sensitive Compartmented Information) What describes how Sensitive Compartmented Information is marked? Dont allow other access or to piggyback into secure areas. Store it in a shielded sleeve to avoid chip cloning. Which is an untrue statement about unclassified data? **Insider Threat Based on the description that follows, how many potential insider threat indicator(s) are displayed? Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Use the classified network for all work, including unclassified work. Use a single, complex password for your system and application logons. A coworker has asked if you want to download a programmer's game to play at work. Executive Order 13526 Classified National Security Information, PersonallyIdentifiable Information (PII), Sensitive Personally Identifiable Information (SPII), Proprietary Business Information (PBI) or currently known within EPA as Confidential Business Information (CBI), Unclassified Controlled Technical Information (UCTI). Please click here to see any active alerts. Permitted Uses of Government-Furnished Equipment (GFE). Controlled Unclassified Information (CUI): Controlled Unclassified information was defined in the Executive Order 13556 as information held by or generated for the Federal Government that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations and government-wide policies that isn't classified 1.To provide opportunities for individuals and businesses to open checking accounts __________, To write rules and guidelines for financial institutions under its supervision __________, To be the lender of last resort for financial institutions __________, To conduct the nations monetary policy with the goals of maintaining full employment and price stability __________, 5. A program that segregates various types of classified information into distinct compartments for added protection and dissemination or distribution control. Spillage can be either inadvertent or intentional. **Physical Security Within a secure area, you see an individual who you do not know and is not wearing a visible badge. How should you respond? What action should you take? What is considered a mobile computing device and therefore shouldnt be plugged in to your Government computer? **Travel What security risk does a public Wi-Fi connection pose? Federal agencies routinely generate, use, store, and share information that, while not meeting the threshold for classification as national security or atomic energy information, requires some level of protection from unauthorized access and release. John submits CUI to his organizations security office to transmit it on his behalf. **Social Engineering Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? Unauthorized Disclosure of Classified Information and Controlled Unclassified Information . Reviewing and configuring the available security features, including encryption. How can you guard yourself against Identity theft? Connect to the Government Virtual Private Network (VPN). Follow procedures for transferring data to and from outside agency and non-Government networks. Ensure proper labeling by appropriately marking all classified material. Do not use any personally owned/non-organizational removable media on your organizations systems. All https sites are legitimate and there is no risk to entering your personal info online. You receive an email at your official Government email address from an individual at the Office of Personnel Management (OPM). Asked 8/5/2020 6:29:36 PM. It is created or received by a healthcare provider, health plan, or employer. Badges must be visible and displayed above the waist at all times when in the facility. What should you do to protect classified data? Which of the following is NOT a correct way to protect sensitive information? Which of the following is NOT a home security best practice? EPAs CUI Program is responsible for issuing CUI policy, procedures, training, and guidance to program offices and regions, along with providing oversight and reporting on the Agencys progress on meeting NARAs CUI deadlines. Correct Which of the following actions can help to protect your identity? When gases are sold they are usually compressed to high pressures. Correct. Follow instructions given only by verified personnel. Maybe. classified-document. Which of the following is NOT a security best practice when saving cookies to a hard drive? It includes a threat of dire circumstances. CUI must be handled using safeguarding or dissemination controls. How can you protect your information when using wireless technology? Unknown data is categorized by the system; an analyst then reviews the results How can you protect data on your mobile computing and portable electronic devices (PEDs)? What actions should you take prior to leaving the work environment and going to lunch? Sensitive information. Data about you collected from all sites, apps, and devices that you use can be aggregated to form a profile of you. Follow the steps enlisted below to use WEKA for identifying real values and nominal attributes in the dataset. As long as the document is cleared for public release, you may release it outside of DoD. Within a secure area, you see an individual you do not know. Call your security point of contact immediately. Report the crime to local law enforcement. TheNational Archives and Records Administration (NARA)servesas the Controlled Unclassified Information (CUI) Executive Agent (EA). New answers. Use personal information to help create strong passwords. A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. It is getting late on Friday. *Controlled Unclassified Information Which of the following is NOT a correct way to protect CUI? correct. correct. How many potential insiders threat indicators does this employee display? Cyber Awareness 2022. A medium secure password has at least 15 characters and one of the following. (Correct) -It does not affect the safety of Government missions. Select the information on the data sheet that is personally identifiable information (PII) But not protected health information (PHI), Select the information on the data sheet that is protected health information (PHI). How many potential insider threat indicators does this employee display? Connect to the Government Virtual Private Network (VPN).?? Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. Explain. Approved Security Classification Guide (SCG). You check your bank statement and see several debits you did not authorize. How do you respond? Directives issued by the Director of National Intelligence. You receive an unexpected email from a friend: "I think you'll like this: (URL)" What action should you take? Correct. Which of the following is true of Internet of Things (IoT) devices? **Insider Threat A colleague vacations at the beach every year, is married and a father of four, his work quality is sometimes poor, and he is pleasant to work with. correct. UNCLASSIFIED - CLASSIFICATION MARKINGS FOR TRAINING PURPOSES ONLY Marking in the Electronic Environment Short Student Guide Center for Development of Security Excellence Page 4 UNCLASSIFIED - CLASSIFICATION MARKINGS FOR TRAINING PURPOSES ONLY IM and Chat Instant messages and chats are brief, text-based message exchanges and conversations. **Home Computer Security What should you consider when using a wireless keyboard with your home computer? The CAC/PIV is a controlled item and contains certificates for: An individual who has attempted to access sensitive information without need-to-know and has made unusual requests for sensitive information is displaying indicators of what? **Insider Threat What do insiders with authorized access to information or information systems pose? Under What Circumstances Could Unclassified? How many potential insider threat indicators does this employee display? tell your colleague that it needs to be secured in a cabinet or container. Which of the following may help to prevent spillage? Refer the reporter to your organizations public affairs office. Refer the reporter to your organizations public affairs office. *Sensitive Compartmented Information What is a Sensitive Compartmented Information (SCI) program? Note the websites URL and report the situation to your security point of contact. Which is a risk associated with removable media? However, unclassified data. **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sites visited? **Insider Threat Which scenario might indicate a reportable insider threat?