How should you respond? Malicious code can do damage by corrupting files, erasing your hard drive, and/or allowing hackers access. Remove security badge as you enter a restaurant or retail establishment. Search for an answer or ask Weegy. What is a way to prevent the download of viruses and other malicious code when checking your e-mail? Who designates whether information is classified and its classification level? If aggregated, the classification of the information may not be changed. Always use DoD PKI tokens within their designated classification level. When unclassified data is aggregated, its classification level may rise. Others may be able to view your screen. *Sensitive Compartmented Information Which must be approved and signed by a cognizant Original Classification Authority (OCA)? On September 14, 2016, NARA issued a final rule amending 32 CFR Part 2002 to establish a uniform policy for all Federal agencies and prescribe Government-wide program implementation standards, including designating, safeguarding, disseminating, marking, decontrolling, and disposing of CUI; self-inspection and oversight requirements; and other facets of the CUI Program. Follow procedures for transferring data to and from outside agency and non-Government networks. **Identity management Which of the following is an example of a strong password? How do you respond? Use TinyURL's preview feature to investigate where the link leads. What should be your response? Appropriate clearance; signed and approved non-disclosure agreement; and need-to-know. Which of the following is a good practice to prevent spillage? **Classified Data When classified data is not in use, how can you protect it? All of these. Which of the following may help to prevent inadvertent spillage? Here you can find answers to the DoD Cyber Awareness Challenge. General Services Administration (GSA) approval. Do not use any personally owned/non-organizational removable media on your organizations systems. John submits CUI to his organizations security office to transmit it on his behalf. Use the classified network for all work, including unclassified work. Rating. Which of the following includes Personally Identifiable Information (PII) and Protected Health Information (PHI)? Ask the individual to see an identification badge. What should the participants in this conversation involving SCI do differently? What information most likely presents a security risk on your personal social networking profile? There are many travel tips for mobile computing. (controlled unclassified information) Which of the following is NOT correct way to protect CUI? Ask for information about the website, including the URL. (Sensitive Information) Which of the following is true about unclassified data? -Its classification level may rise when aggregated. Sensitive information may be stored on any password-protected system. Call your security point of contact immediately. Which of the following should be done to keep your home computer secure? Proactively identify potential threats and formulate holistic mitigation responses. **Use of GFE What is a critical consideration on using cloud-based file sharing and storage applications on your Government-furnished equipment (GFE)? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Under what circumstances could unclassified information be considered a threat to national security? **Identity Management Your DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. Correct As a best practice, labeling all classified removable media and considering all unlabeled removable media as unclassified. Based on the description that follows, how many potential insider threat indicator (s) are displayed? Executive Order 13556, Controlled Unclassified Information, requires the Executive Branch to establish an open and uniform program for managing [unclassified] information that requires safeguarding or dissemination controls pursuant to and consistent with laws, regulations, and Government-wide policies. The National Archives and Records Administration (NARA) was named the Executive Agent (EA) responsible for overseeing the CUI Program. When is it okay to charge a personal mobile device using government-furnished equipment (GFE)? Which of the following is an example of a strong password? What should be your response? Your comments are due on Monday. What should be your response? When leaving your work area, what is the first thing you should do? You are having lunch at a local restaurant outside the installation, and you find a cd labeled favorite song. Which of the following makes Alexs personal information vulnerable to attacks by identity thieves? Unclassified documents do not need to be marked as a SCIF. (Answer) CPCON 2 (High: Critical and Essential Functions) CPCON 1 (Very High: Critical Functions) CPCON 3 (Medium: Critical, Essential, and Support Functions) CPCON 4 (Low: All Functions) CPCON 5 (Very Low: All Functions). Which Of The Following Statements About Adding Social Networks To Hootsuite Is False? Understanding and using the available privacy settings. A medium secure password has at least 15 characters and one of the following. Store it in a GSA approved vault or container. Official websites use .gov CUI may be stored on any password-protected system. What should you do? Create separate user accounts with strong individual passwords. Write your password down on a device that only you access. Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. e. Why do Elodea and onion cells have more consistent shapes than human epithelial cells? It is permissible to release unclassified information to the public prior to being cleared. The date of full implementation of the CUI Program will be announced by the EPAs CUI Senior Agency Official (CUI SAO) and updated here on EPAs public web page. A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and occasionally aggressive in trying to access sensitive information. You must have your organization's permission to telework. When your vacation is over, after you have returned home. Antihistamines are used to treat the symptoms, such as sneezing, that are due to inflammation caused by irritants in the airways. (Spillage) What advantages do insider threats have over others that allows them to cause damage to their organizations more easily? How do you think antihistamines might work? Which of the following is a best practice for physical security? When classified data is not in use, how can you protect it? Correct. New interest in learning another language, Which of the following is a good practice to protect classified information. **Social Networking Your cousin posted a link to an article with an incendiary headline on social media. **Physical Security Within a secure area, you see an individual who you do not know and is not wearing a visible badge. 1 Cyber Awareness Challenge 2023 Answers. Which of the following information is a security risk when posted publicly on your social networking profile? asked in Internet by voice (265k points) Question : Which of the following is true about unclassified data? Spillage can be either inadvertent or intentional. Which scenario might indicate a reportable insider threat? In which situation below are you permitted to use your PKI token? What should you do after you have ended a call from a reporter asking you to confirm potentially classified information found on the web? -Ask them to verify their name and office number Discuss why gases, such as barbecue propane gas, are sold by mass and not by volume. They can become an attack vector to other devices on your home network. Connect to the Government Virtual Private Network (VPN). *Spillage A user writes down details marked as Secret from a report stored on a classified system and uses those details to draft a briefing on an unclassified system without authorization. What type of data must be handled and stored properly based on classification markings and handling caveats? This lets the service person know when the tank is "full." Correct. How are Trojan horses, worms, and malicious scripts spread? When checking in at the airline counter for a business trip, you are asked if you would like to check your laptop bag. When using a public device with a card reader, only use your DoD CAC to access unclassified information, is only allowed if the organization permits it. A vendor conducting a pilot program with your organization contacts you for organizational data to use in a prototype. Read the latest news from the Controlled Unclassified Information (CUI) program. The challenges goal is simple: To change user behavior to reduce the risks and vulnerabilities DoD Information Systems face. Store classified data in a locked desk drawer when not in use Maybe The emission rate of CO 2 from the soils reached the maximum on the 1st day of incubation and the sequence of CO 2 emission rate and cumulative emission under different amendment treatments was as SG > S > G > CK > N (Fig. Which of the following is an example of Protected Health Information (PHI)? Coworker making consistent statements indicative of hostility or anger toward the United States in its policies. What is a rule for removable media, other portable electronic devices (PEDs), and mobile computing devices to protect Government systems? Proactively identify potential threats and formulate holistic mitigation responses. What should you do? Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. (Sensitive Information) What must the dissemination of information regarding intelligence sources, methods, or activities follow? Before long she has also purchased shoes from several other websites. correct. *Sensitive Compartmented Information What should the owner of this printed SCI do differently? Adversaries exploit social networking sites to disseminate fake news Correct. Where. Which of the following is true of using DoD Public key Infrastructure (PKI) token? Question. It should only be in a system while actively using it for a PKI-required task. To transmit large payments through Fedwire __________, To regulate and supervise the stock market to provide stability and security to individual investors. Insiders are given a level of trust and have authorized access to Government information systems. Your cousin posted a link to an article with an incendiary headline on social media. What should you do to protect yourself while on social networks? correct. Click the card to flip Flashcards Learn Test Match Created by Jamie_Lancaster Terms in this set (24) Which of the following is true of traveling overseas with a mobile phone. Correct. Which of the following is an example of malicious code? *Sensitive Compartmented Information What is a Sensitive Compartmented Information (SCI) program? (Malicious Code) What is a good practice to protect data on your home wireless systems? Explain. **Insider Threat How many potential insider threat indicators does a coworker who often makes others uneasy by being persistent in trying to obtain information about classified projects to which he has no access, is boisterous about his wife putting them in credit card debt, and often complains about anxiety and exhaustion display? We recommend Norton Security or McAfee Total Protection. Retrieve classified documents promptly from printers. Use personal information to help create strong passwords. February 8, 2022. not correct. The annual Cyber Awareness Challenge is a course that helps authorized users learn how to best avoid and reduce threats and vulnerabilities in an organizations system. Use online sites to confirm or expose potential hoaxes, Follow instructions given only by verified personnel, Investigate the links actual destination using the preview feature, Determine if the software or service is authorized. Unclassified documents do not need to be marked as a SCIF. Not correct You have reached the office door to exit your controlled area. Malicious code can include viruses, worms, and macros. Use only personal contact information when establishing your personal account. Since the URL does not start with https, do not provide your credit card information. What does Personally Identifiable information (PII) include? Which of the following is true of Protected Health Information (PHI)? (Spillage) Which type of information could reasonably be expected to cause serious damage to national security if disclosed without authorization? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. It displays a label showing maximum classification, date of creation, point of contact, and Change Management 9CM) Control Number. In which situation below are you permitted to use your PKI token? 1 Answer/Comment. Which of the following is a potential insider threat indicator? Search the Registry: Categories, Markings and Controls: Category list CUI markings All data transfers via the internet are not 100% secure and there might be some security vulnerabilities. Lock your device screen when not in use and require a password to reactivate. Your DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approves for access to the NIPRNET. true-statement. Darryl is managing a project that requires access to classified information. Controlled Unclassified Information (CUI) is information that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies, but is not classified under Executive Order 13526 "Classified National Security Informat What are examples of CUI? Click on "Open File". What can you do to protect yourself against phishing? What does Personally Identifiable Information (PII) include? Which of the following is a good practice to prevent spillage. (Spillage) What level of damage can the unauthorized disclosure of information classified as confidential reasonably be expected to cause? Not correct. If possible, set your browser preferences to prompt you each time a website wants to store a cookie. Linda encrypts all of the sensitive data on her government-issued mobile devices. Looking for https in the URL. Set hasDigit to true if the 3-character passCode contains a digit, Critical, Essential, and Support Functions. **Classified Data Which of the following is a good practice to protect classified information? Log in for more information. CUI is an umbrella term that encompasses many different markings toidentifyinformationthat is not classified but which should be protected. If you participate in or condone it at any time. How many potential insider threat indicators does this employee display? Note the websites URL and report the situation to your security point of contact. **Classified Data Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? Follow the steps enlisted below to use WEKA for identifying real values and nominal attributes in the dataset. (Spillage) Which of the following is a good practice to aid in preventing spillage? CPCON 1 (Very High: Critical Functions) DOD Cyber Awareness 2021 (DOD-IAA-V18.0) Know, RT202: Ch. You must have your organizations permission to telework. Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIV) card. **Website Use How should you respond to the theft of your identity? Using webmail may bypass built in security features. Connect to the Government Virtual Private Network (VPN).?? **Social Engineering Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? What type of attack might this be? Which of the following is NOT a home security best practice? **Insider Threat Which of the following should be reported as a potential security incident (in accordance with you Agencys insider threat policy)? the following is true about unclassified data fy23 controlled unclassified information cui quizlet what is true of controlled unclassified information What. Which of the following statements is NOT true about protecting your virtual identity? (Insider Threat) Based on the description that follows, how many potential insider threat indicator(s) are displayed? Tell us about it through the REPORT button at the bottom of the page. What is the best response if you find classified government data on the internet? Which of the following is not considered an example of data hiding? Which of the following may be helpful to prevent inadvertent spillage? Use a single, complex password for your system and application logons. c. What similarities and differences are there between plant and animal cells? See the discussed example before. At EPA, the CUI Program is housed in the Libraries and Accessibility Division (LAD) within the Office of Mission Supports (OMS), Office of Enterprise Information Programs (OEIP). Any time you participate in or condone misconduct, whether offline or online. When can you check personal email on your government furnished equipment? Contact the IRS using their publicly available, official contact information. **Insider Threat What do insiders with authorized access to information or information systems pose? Sensitive information. Thats the only way we can improve. What type of security is part of your responsibility and placed above all else?, If your wireless device is improperly configured someone could gain control of the device? Your health insurance explanation of benefits (EOB). What describes how Sensitive Compartmented Information is marked? Which of the following is true of sharing information in a Sensitive Compartmented Information Facility (SCIF)? How can you guard yourself against Identity theft? Which of the following is true about unclassified data? Which Of The Following Is Not A Correct Way To Protect CUI. You know this project is classified. You know this project is classified. Unclassified Information Student Guide . *Spillage Which of the following may help prevent inadvertent spillage? Identification, encryption, and digital signature. When may you be subject to criminal, disciplinary, and/or administrative action due to online harassment, bullying, stalking, hazing, discrimination, or retaliation? What is a best practice for protecting controlled unclassified information (CUI)? (Wrong). Discrete data involves whole numbers (integers - like 1, 356, or 9) that can't be divided based on the nature of what they are. Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. When unclassified data is aggregated, its classification level may rise. Unknown data is categorized by the system; an analyst then reviews the results (Travel) Which of the following is a concern when using your Government-issued laptop in public? *Sensitive Compartmented Information When is it appropriate to have your security badge visible? The popup asks if you want to run an application. Which of the following best describes wireless technology? Dont assume open storage in a secure facility is authorized Maybe. What Are Some Examples Of Malicious Code Cyber Awareness? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? Which is a way to protect against phishing attacks? Software that installs itself without the users knowledge. Classified material must be appropriately marked. Which of the following is true of transmitting Sensitive Compartmented Information (SCI)? What level of damage to national security could reasonably be expected if unauthorized disclosure of Top Secret information occurred? *Classified Data In addition to avoiding the temptation of greed to betray his country, what should Alex do differently? (2) War planning documents which contain worldwide -- (a) Planning data and assumptions, (b) Wartime planning factors for the use of nuclear weapons, (c) Intelligence estimates of enemy capabilities, (d) Force composition and development, and **Insider Threat Which of the following should be reported as a potential security incident? **Classified Data Which of the following must you do before using and unclassified laptop and peripherals in a collateral environment? Only friends should see all biographical data such as where Alex lives and works. When using your government-issued laptop in public environments, with which of the following should you be concerned? What would you do if you receive a game application request on your government computer that includes permission to access your friends, profile information, cookies, and sites visited? Which of the following is a best practice for handling cookies? Note any identifying information and the websites Uniform Resource Locator (URL). you don't need to do anything special to protect this information How should you protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? Of the following, which is NOT a security awareness tip? Be aware of classification markings and all handling caveats. *Sensitive Information Which of the following is the best example of Personally Identifiable Information (PII)? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. f. Get an answer. You may use your personal computer as long as it is in a secure area in your home b. Correct. (Malicious Code) While you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Which is NOT a method of protecting classified data? **Social Engineering Which of the following is a way to protect against social engineering? Exceptionally grave damage. Report the crime to local law enforcement. Protection may be required for privacy, law enforcement, contractual protections, or other reasons. Which of the following should be reported as a potential security incident? **Removable Media in a SCIF What action should you take when using removable media in a Sensitive Compartmented Information Facility (SCIF)? JavaScript appears to be disabled on this computer.
Nuro Glassdoor Salary,
Why Do Black Cats Have Long Fangs,
What Does Miguel Steal From Ernesto De La Cruz Quizlet,
Trumbull High School Honor Roll 2019,
Jessie Martha Menzies,
Articles W