Which of the following does NOT constitute spillage? At EPA, the CUI Program is housed in the Libraries and Accessibility Division (LAD) within the Office of Mission Supports (OMS), Office of Enterprise Information Programs (OEIP). Mobile devices and applications can track your location without your knowledge or consent. 10-3 X-ray Interaction with Matter, Fundamentals of Engineering Economic Analysis, David Besanko, Mark Shanley, Scott Schaefer. How can you protect your information when using wireless technology? Which may be a security issue with compressed Uniform Resource Locators (URLs)? New interest in learning another language, Which of the following is a good practice to protect classified information. Were mitochondria as abundant in human epithelial cells as in onion epidermal cells (procedure 4.6)? When using your government-issued laptop in public environments, with which of the following should you be concerned? A coworker has asked if you want to download a programmers game to play at work. Even within a secure facility, dont assume open storage is permitted. Controlled Unclassified Information (CUI) is informationthat requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies, but is not classified under Executive Order 13526 "Classified National Security Informat What are examples of CUI? 870 Summit Park Avenue Auburn Hills, MI 48057. What is required for an individual to access classified data? **Social Networking Your cousin posted a link to an article with an incendiary headline on social media. Which of the following information is a security risk when posted publicly on your social networking profile? Which of the following is true about unclassified data? Store it in a shielded sleeve to avoid chip cloning. **Insider Threat What is an insider threat? Mark SCI documents appropriately and use an approved SCI fax machine. (Identity Management) What certificates are contained on the Common Access Card (CAC)? (1) A strategic plan documenting the overall conduct of a war. Controlled Unclassified Information (CUI) Purpose of the CUI Program. I may decide not to consent to these terms, but, if I do not consent to all of these terms, then I agree not to proceed with creating an account or moving forward with filling out the application, and I understand that I will not be . Scan external files from only unverifiable sources before uploading to computer. d. giving a spanking or a scolding. laptops, fitness bands, tablets, smartphones, electric readers, and Bluetooth devices. **Identity management What is the best way to protect your Common Access Card (CAC)? Taking classified documents from your workspace. Ensure proper labeling by appropriately marking all classified material. *Sensitive Compartmented Information When should documents be marked within a Sensitive Compartmented Information Facility (SCIF). Neither confirm or deny the information is classified. Immediately notify your security point of contact. -Its classification level may rise when aggregated. DOD Cyber Awareness 2021 (DOD-IAA-V18.0) Know, RT202: Ch. Being cognizant of classification markings and labeling practices are good strategies to avoid inadvertent spillage. *Sensitive Information Which of the following is the best example of Personally Identifiable Information (PII)? Avoid talking about work outside of the workplace or with people without a need-to-know. Photos of your pet Correct. 1 Cyber Awareness Challenge 2023 Answers. You must have your organizations permission to telework. What should you do? **Classified Data Which classification level is given to information that could reasonably be expected to cause serious damage to national security? There are many travel tips for mobile computing. Which of the following is true of Unclassified Information? What should the participants in this conversation involving SCI do differently? What type of social engineering targets particular individuals, groups of people, or organizations? Annual DoD Cyber Awareness Challenge Training, DOD Cyber Awareness Challenge 2019: Knowledge, DOD Cyber Awareness Challenge 2019 (DOD-IAA-V, Operations Management: Sustainability and Supply Chain Management, Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson, Anderson's Business Law and the Legal Environment, Comprehensive Volume, David Twomey, Marianne Jennings, Stephanie Greene. What should be your response? Others may be able to view your screen. Which of the following is a good practice to prevent spillage. **Classified Data When classified data is not in use, how can you protect it? It never requires classification markings, is true about unclassified data. It may be compromised as soon as you exit the plane. Which of the following is a practice that helps to protect you from identity theft? A coworker removes sensitive information without authorization. A coworker brings a personal electronic device into prohibited areas. Connect to the Government Virtual Private Network (VPN).?? Memory sticks, flash drives, or external hard drives. Upon connecting your Government- issued laptop to a public wireless connection, what should you immediately do? Do not access website links in e-mail messages. Research the source to evaluate its credibility and reliability. How can you protect yourself on social networking sites? *Spillage. CPCON 3 (Medium: Critical, Essential, and Support Functions) Asked 8/5/2020 6:29:36 PM. How can you protect yourself from social engineering? Refer the reporter to your organizations public affairs office. what should be your response be? A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and is occasionally aggressive in trying to access sensitive information. *Sensitive Compartmented Information Which must be approved and signed by a cognizant Original Classification Authority (OCA)? (Spillage) Which of the following is a good practice to aid in preventing spillage? A program that segregates various type of classified information into distinct compartments for added protection and dissemination for distribution control. Which designation marks information that does not have potential to damage national security? *Sensitive Compartmented Information What is Sensitive Compartmented Information (SCI)? a. ALways mark classified information appropriately and retrieve classified documents promptly from the printer. 1.1.5 Controlled Unclassified Information. Directives issued by the Director of National Intelligence. Attempting to access sensitive information without need-to-know, Avoid talking about work outside of the workplace or with people without a need-to-know, Report the suspicious behavior in accordance with their organizations insider threat policy. classified-document. Use only personal contact information when establishing personal social networking accounts, never use Government contact information. Which is a way to protect against phishing attacks? A colleague saves money for an overseas vacation every year, is a . Which of the following individuals can access classified data? **Use of GFE What is a critical consideration on using cloud-based file sharing and storage applications on your Government-furnished equipment (GFE)? Ask for information about the website, including the URL. Remove your security badge after leaving your controlled area or office building. correct. Which of the following is NOT a typical means for spreading malicious code? All of these. **Classified Data How should you protect a printed classified document when it is not in use? **Classified Data What level of damage can the unauthorized disclosure of information classified as Confidential reasonably be expected to cause? You receive an email at your official Government email address from an individual at the Office of Personnel Management (OPM). How can you protect your information when using wireless technology? correct. You are working at your unclassified system and receive an email from a coworker containing a classified attachment. CPCON 5 (Very Low: All Functions). correct. tell your colleague that it needs to be secured in a cabinet or container. (controlled unclassified information) Which of the following is NOT correct way to protect CUI? Which of these is true of unclassified data? Cyber Awareness 2022. This bag contains your government-issued laptop. What action should you take? Call your security point of contact immediately. TheNational Archives and Records Administration (NARA)servesas the Controlled Unclassified Information (CUI) Executive Agent (EA). #1) Open WEKA and select "Explorer" under 'Applications'. Which is it appropriate to have your security badge visible within a Sensitive Compartmented Information Facility (SCIF). Maybe. What should you do? You believe that you are a victim of identity theft. Unclassified information cleared for public release. Note any identifying information and the websites Uniform Resource Locator (URL). Which of the following may help to prevent inadvertent spillage? Decline So That You Maintain Physical Control of Your Government-Issued Laptop. Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. Correct. What should you do to protect classified data? Which of the following is true of sharing information in a Sensitive Compartmented Information Facility (SCIF)? When unclassified data is aggregated, its classification level may rise. In which situation below are you permitted to use your PKI token? (Home computer) Which of the following is best practice for securing your home computer? Setting weekly time for virus scan when you are not on the computer and it is powered off. What Are Some Examples Of Malicious Code Cyber Awareness? Alex demonstrates a lot of potential insider threat indicators. CUI may be stored only on authorized systems or approved devices. Which of the following is NOT true concerning a computer labeled SECRET? Which of the following is NOT a home security best practice? d. How do the size and shape of a human epithelial cell differ from those of the Elodea and onion cells that you examined earlier? Which of the following is a best practice for handling cookies? Adversaries exploit social networking sites to disseminate fake news Correct. (Sensitive Information) What guidance is available from marking Sensitive Information information (SCI)? A. What certificates are contained on the DoD Public Key Infrastructure (PKI) implemented by the Common Access Card (CAC)/Personal Identity Verification (PIV) card? Bob, a coworker, has been going through a divorce, has financial difficulties and is displaying hostile behavior. Which of the following statements is TRUE about the use of DoD Public Key Infrastructure (PKI) tokens? What is an individual's Personally Identifiable Information (PII) or Protected Health Information (PHI) considered? **Social Networking As someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? Search for an answer or ask Weegy. A coworker is observed using a personal electronic device in an area where their use is prohibited. (Spillage) When classified data is not in use, how can you protect it? Badges must be visible and displayed above the waist at all times when in the facility. Preventing an authorized reader of an object from deleting that object B. Search for an answer or ask Weegy. **Mobile Devices What can help to protect the data on your personal mobile device? Which of the following represents a good physical security practice? EPA anticipates beginning CUI practices (designating, marking, safeguarding, disseminating, destroying, and decontrolling) starting in FY2023. Alexa May, director of accounts, received a bill for $648\$648$648, dated April 666, with sales terms 2/10,1/15,n/302/10, 1/15, n/302/10,1/15,n/30. Compute The Average Kids Per Family. Store it in a shielded sleeve to avoid chip cloning. Which Of The Following Is Not A Correct Way To Protect CUI. Ans: True Question 2: The Government Information Security Reform Act (Security Reform Act) of 2000 focuses on management View the full answer Which is a best practice that can prevent viruses and other malicious code from being downloaded when checking your e-mail? Assuming open storage is always authorized in a secure facility. In the following situations, determine if the duty describes would be one of the Fed is responsible or is not responsible to enforce. It never requires classification markings, is true about unclassified data. Which of the following is a good practice for telework? Which of the following is NOT an appropriate way to protect against inadvertent spillage? The potential for unauthorized viewing of work-related information displayed on your screen. The challenges goal is simple: To change user behavior to reduce the risks and vulnerabilities DoD Information Systems face. A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. Sensitive information. Use a single, complex password for your system and application logons. Examples are: Patient names, Social Security numbers, Drivers license numbers, insurance details, and birth dates. Note the websites URL and report the situation to your security point of contact. Use only your personal contact information when establishing your account. cyber-awareness. Briefly describe what you have learned. *Sensitive Compartmented Information What must the dissemination of information regarding intelligence sources, methods, or activities follow? What describes how Sensitive Compartmented Information is marked? All https sites are legitimate. Malicious code can mask itself as a harmless e-mail attachment, downloadable file, or website. A coworker removes sensitive information without approval. *Sensitive Information Under what circumstances could classified information be considered a threat to national security? You receive an inquiry from a reporter about government information not cleared for public release. A passenger in the Land Rover Freelander that T-boned the hatchback said the BMW had been driven out of the unclassified road towards Shipton-under-Wychwood 'like a bat out of hell' - giving . Set hasDigit to true if the 3-character passCode contains a digit, Critical, Essential, and Support Functions. All to Friends Only. Three or more. **Social Networking When may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? Click the card to flip Flashcards Learn Test Match Created by Jamie_Lancaster Terms in this set (24) A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and occasionally aggressive in trying to access sensitive information. Which of the following should be reported as a potential security incident (in accordance with your Agencys insider threat policy)? e. Why do Elodea and onion cells have more consistent shapes than human epithelial cells? JavaScript appears to be disabled on this computer. Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. -TRUE What action is recommended when somebody calls you to inquire about your work environment or specific account information? Data about you collected from all sites, apps, and devices that you use can be aggregated to form a profile of you. **Classified Data Which of the following is a good practice to protect classified information? Appropriate clearance; signed and approved non-disclosure agreement; and need-to-know. Here you can find answers to the DoD Cyber Awareness Challenge. **Website Use How should you respond to the theft of your identity? be wary of suspicious e-mails that use your name and/or appear to come from inside your organization. NARA has the authority and responsibility to manage the CUI Program across the Federal government. Correct. Any time you participate in or condone misconduct, whether offline or online. How many insider threat indicators does Alex demonstrate? *Sensitive Information Under which circumstances is it permitted to share an unclassified draft document with a non-DoD professional discussion group? Use only personal contact information when establishing personal social networking accounts, never use Government contact information. **Insider Threat A colleague vacations at the beach every year, is married and a father of four, his work quality is sometimes poor, and he is pleasant to work with. Security Classification Guides (SCGs).??? Select the information on the data sheet that is personally identifiable information (PII). 1 Answer/Comment. What actions should you take prior to leaving the work environment and going to lunch? Within a secure area, you see an individual you do not know. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Which of the following should be reported as a potential security incident? What should you do if a reporter asks you about potentially classified information on the web? A type of phishing targeted at senior officials. Which of the following should you do immediately? (Malicious Code) Which of the following is true of Internet hoaxes? Which is an untrue statement about unclassified data? You must have your organization's permission to telework c. You may use unauthorized software as long as your computer's antivirus software is up to date. Ask the individual to see an identification badge. The annual Cyber Awareness Challenge is a course that helps authorized users learn how to best avoid and reduce threats and vulnerabilities in an organizations system. How do you respond? Identification, encryption, and digital signature. What should you do? When is the best time to post details of your vacation activities on your social networking website? They may be used to mask malicious intent. __________, To supervise bank holding companies and state member banks __________, To make loans to businesses who want to expand their operations __________, To operate the check-clearing system for the nation __________, to provide financial services to the federal government and serve as the bankers bank for commercial banks and other depositary institutions __________, To serve as the fiscal agent of the U.S. government __________, To place printed paper currency and newly minted coins into circulation __________. Which of the following is an example of punishment by application? Which of the following is NOT considered a potential insider threat indicator? This button displays the currently selected search type. For Government-owned devices, use approved and authorized applications only. Who designates whether information is classified and its classification level? Remove your security badge, common access card (CAC), or personal identity verification (PIV) card. It contains certificates for identification, encryption, and digital signature. Monitor credit card statements for unauthorized purchases, Thumb drives, memory sticks, and flash drives are examples of. (Spillage) After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. How should you securely transport company information on a removable media? Which scenario might indicate a reportable insider threat? Spear Phishing attacks commonly attempt to impersonate email from trusted entities. Do not download it. *Spillage What should you do when you are working on an unclassified system and receive an email with a classified attachment? As long as the document is cleared for public release, you may release it outside of DoD. What would you do if you receive a game application request on your government computer that includes permission to access your friends, profile information, cookies, and sites visited? If aggregated, the information could become classified. An investment in knowledge pays the best interest.. Correct. Which of the following is a good practice to avoid email viruses? correct. You many only transmit SCI via certified mail. Ensure there are no identifiable landmarks visible in any photos taken in a work setting that you post. What must authorized personnel do before permitting another individual to enter a Sensitive Compartmented Information Facility (SCIF)? What type of data must be handled and stored properly based on classification markings and handling caveats? The date of full implementation of the CUI Program will be announced by the EPAs CUI Senior Agency Official (CUI SAO) and updated here on EPAs public web page. (controlled unclassified information) Which of the following is NOT an example of CUI? Unauthorized Disclosure of Classified Information and Controlled Unclassified Information . (Malicious Code) What is a common indicator of a phishing attempt? Should you always label your removable media? Don't talk about work outside your workspace unless it is a specifically designated public meeting environment and is controlled by the event planners. Of the following, which is NOT a security awareness tip? Third, the neighbor ground points of an unclassified point are searched from multiple subspaces. PII includes, but is not limited to, social security numbers, date and places of birth, mothers maiden names, biometric records, and PHI. When leaving your work area, what is the first thing you should do? However, agency personnel and contractors should first consult their agency's CUI implementing policies and program management for guidance. Who is responsible for information/data security? Approved Security Classification Guide (SCG). Someone calls from an unknown number and says they are from IT and need some information about your computer. Which of the following is NOT a good way to protect your identity? Based on the description that follows, how many potential insider threat indicator (s) are displayed? How many potential insider threat indicators does this employee display? Filter by: All $ Off % Off Free Online Offline. Spillage because classified data was moved to a lower classification level system without authorization. Only paper documents that are in open storage need to be marked. *Spillage What is a proper response if spillage occurs? Who can be permitted access to classified data? *Spillage After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Always take your CAC when you leave your workstation. (removable media) If an incident occurs involving removable media in a Sensitive Compartmented Information Facility (SCIF), what action should you take? Based on the description that follows, how many potential insider threat indicator(s) are displayed? Which of the following is NOT Government computer misuse? Thats the only way we can improve. A coworker wants to send you a sensitive document to review while you are at lunch and you only have your personal tablet. Refer the reporter to your organizations public affairs office. Which of the following is an example of malicious code? **Physical Security Within a secure area, you see an individual who you do not know and is not wearing a visible badge. On September 14, 2016, NARA issued a final rule amending 32 CFR Part 2002 to establish a uniform policy for all Federal agencies and prescribe Government-wide program implementation standards, including designating, safeguarding, disseminating, marking, decontrolling, and disposing of CUI; self-inspection and oversight requirements; and other facets of the CUI Program. What is the best choice to describe what has occurred? When teleworking, you should always use authorized and software. Note any identifying information, such as the websites URL, and report the situation to your security POC. Under what circumstances could unclassified information be considered a threat to national security? **Mobile Devices What should you do when going through an airport security checkpoint with a Government-issued mobile device? Historically, each agency developed its own practices for sensitive unclassified information, resulting in a patchwork of systems across the Executive branch, in which similar information might be defined or labeled differently, or where dissimilar information might share a definition and/or label. Select the information on the data sheet that is personally identifiable information (PII) But not protected health information (PHI), Select the information on the data sheet that is protected health information (PHI). Q&A for work. Prudence faxes CUI using an Unclassified cover sheet via a Secret fax machine. Keep your operating system and software up to date: This will help patch any security vulnerabilities in your software. Search by Subject Or Level. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. While you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Your health insurance explanation of benefits (EOB). **Classified Data Which of the following is true of telework? UNCLASSIFIED is a designation to mark information that does not have potential to damage national security. What is a security best practice to employ on your home computer? **Social Networking Which piece if information is safest to include on your social media profile? How many potential insider threat indicators does this employee display? You must have your organization's permission to telework. When is it okay to charge a personal mobile device using government-furnished equipment (GFE)? . A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. A pop-up window that flashes and warns that your computer is infected with a virus. *Insider Threat Which of the following is a potential insider threat indicator? (GFE) When can you check personal e-mail on your Government-furnished equipment (GFE)? You must have your organization's permission to telework. We recommend Norton Security or McAfee Total Protection. (Malicious Code) What are some examples of removable media? Infographic - Text version Infographic [PDF - 594 KB] Report a problem or mistake on this page Date modified: 2020-12-14 **Website Use Which of the following statements is true of cookies? Correct. Hostility or anger toward the United States and its policies. Use the classified network for all work, including unclassified work. Never allow sensitive data on non-Government-issued mobile devices. What type of social engineering targets senior officials? Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. *Spillage Which of the following is a good practice to prevent spillage? **Social Engineering What action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? Adversaries exploit social networking sites to disseminate fake news. Make note of any identifying information and the website URL and report it to your security office.
Airport Meme Social Distancing,
Ubrique, Spain Handbags,
Frankenmuth News Police Report,
Nsw Health Salary Packaging Employer Share,
Gary Beban Wife,
Articles W