Police Incident In Romiley Today, Rak Toilet Seat Fitting Instructions, Articles W

**Physical Security What is a good practice for physical security? What is the best choice to describe what has occurred? (Answer) CPCON 2 (High: Critical and Essential Functions) CPCON 1 (Very High: Critical Functions) CPCON 3 (Medium: Critical, Essential, and Support Functions) CPCON 4 (Low: All Functions) CPCON 5 (Very Low: All Functions). **Use of GFE What is a critical consideration on using cloud-based file sharing and storage applications on your Government-furnished equipment (GFE)? Badges must be visible and displayed above the waist at all times when in the facility. When vacation is over, after you have returned home. Which of the following statements is TRUE about the use of DoD Public Key Infrastructure (PKI) tokens? Original classification authority Correct. Correct, Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. When may you be subject to criminal, disciplinary, and/or administrative action due to online harassment, bullying, stalking, hazing, discrimination, or retaliation? The answer has been confirmed to be correct. **Social Engineering What is TRUE of a phishing attack? Which of the following is NOT a correct way to protect sensitive information? (Spillage) Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? You must have your organization's permission to telework. Historically, each agency developed its own practices for sensitive unclassified information, resulting in a patchwork of systems across the Executive branch, in which similar information might be defined or labeled differently, or where dissimilar information might share a definition and/or label. What should the owner of this printed SCI do differently? *Classified Data What is required for an individual to access classified data? Which is a way to protect against phishing attacks? (Sensitive Information) What guidance is available from marking Sensitive Information information (SCI)? Ensure there are no identifiable landmarks visible in any photos taken in a work setting that you post. **Social Networking When may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? What is an individual's Personally Identifiable Information (PII) or Protected Health Information (PHI) considered? Unclassified information cleared for public release. How many potential insider threat indicators does this employee display? Correct. A user writes down details from a report stored on a classified system marked as Secret and uses those details to draft an unclassified briefing on an unclassified system without authorization. Discuss why gases, such as barbecue propane gas, are sold by mass and not by volume. Maybe. Government-owned PEDs when expressly authorized by your agency. A passenger in the Land Rover Freelander that T-boned the hatchback said the BMW had been driven out of the unclassified road towards Shipton-under-Wychwood 'like a bat out of hell' - giving . Which is a risk associated with removable media? Appropriate clearance, a signed and approved non-disclosure agreement, and need-to-know, Insiders are given a level of trust and have authorized access to Government information systems. -TRUE The use of webmail is -is only allowed if the organization permits it Using webmail may bypass built in security features. Federal agencies routinely generate, use, store, and share information that, while not meeting the threshold for classification as national security or atomic energy information, requires some level of protection from unauthorized access and release. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. correct. (Mobile Devices) Which of the following statements is true? Why might "insiders" be able to cause damage to their organizations more easily than others? The Registry is updated as agencies continue to submit governing authorities that authorize the protection and safeguarding of sensitive information. Which of the following demonstrates proper protection of mobile devices? Which scenario might indicate a reportable insider threat? You receive an email at your official Government email address from an individual at the Office of Personnel Management (OPM). What is considered a mobile computing device and therefore shouldnt be plugged in to your Government computer? Which of the following is true of Unclassified information? Cyber Awareness Challenge Knowledge Check 2023 Answers, Cyber Awareness Challenge 2022 Knowledge Check Answers. Annual DoD Cyber Awareness Challenge Training, DOD Cyber Awareness Challenge 2019: Knowledge, DOD Cyber Awareness Challenge 2019 (DOD-IAA-V, Operations Management: Sustainability and Supply Chain Management, Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson, Anderson's Business Law and the Legal Environment, Comprehensive Volume, David Twomey, Marianne Jennings, Stephanie Greene. Sensitive information may be stored on any password-protected system. What certificates are contained on the Common Access Card (CAC)? Antihistamines are used to treat the symptoms, such as sneezing, that are due to inflammation caused by irritants in the airways. Only documents that are classified Secret, Top Secret, or SCI require marking. Hostility or anger toward the United States and its policies. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. Classified information that should be unclassified and is downgraded. Protection may be required for privacy, law enforcement, contractual protections, or other reasons. Which of the following represents an ethical use of your Government-furnished equipment (GFE)? Look for a digital signature on the email. Only allow mobile code to run from your organization or your organizations trusted sites. Exceptionally grave damage. *Sensitive Compartmented Information What should the owner of this printed SCI do differently? classified-document. What is the best choice to describe what has occurred? **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sires visited? Who can be permitted access to classified data? You are working at your unclassified system and receive an email from a coworker containing a classified attachment. Spillage because classified data was moved to a lower classification level system without authorization. Research the source of the article to evaluate its credibility and reliability. Is it okay to run it? Telework is only authorized for unclassified and confidential information. The questions are broken into the following sections: Controlled Unclassified Information (CUI) isinformation that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies,but is not classified underExecutive Order 13526 Classified National Security Informationorthe Atomic Energy Act, as amended. b. taking away a toy or treat Social Security Number, date and place of birth, mothers maiden name. What should you do if someone asks to use your government issued mobile device (phone/laptop..etc)? How can you protect data on your mobile computing and portable electronic devices (PEDs)? They can become an attack vector to other devices on your home network. What is a best practice for protecting controlled unclassified information (CUI)? (Malicious Code) What are some examples of removable media? What actions should you take prior to leaving the work environment and going to lunch? Always use DoD PKI tokens within their designated classification level. Filter by: All $ Off % Off Free Online Offline. Which of the following is NOT true concerning a computer labeled SECRET? Sensitive information. What actions should you take with a compressed Uniform Resource Locator (URL) on a website known to you? When is the best time to post details of your vacation activities on your social networking website? **Insider Threat Which of the following should be reported as a potential security incident (in accordance with you Agencys insider threat policy)? Connect to the Government Virtual Private Network (VPN).?? What should you do? All to Friends Only. Which of the following is an example of Protected Health Information (PHI)? In addition to offering an overview of cybersecurity best practices, the challenge also provides awareness of potential and common cyber threats. When unclassified data is aggregated, its classification level may rise. Keep your operating system and software up to date: This will help patch any security vulnerabilities in your software. **Social Networking As someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? Unclassified documents do not need to be marked as a SCIF. **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sites visited? Please click here to see any active alerts. What is a way to prevent the download of viruses and other malicious code when checking your e-mail? Use online sites to confirm or expose potential hoaxes, Follow instructions given only by verified personnel, Investigate the links actual destination using the preview feature, Determine if the software or service is authorized. If possible, set your browser preferences to prompt you each time a website wants to store a cookie. You many only transmit SCI via certified mail. THIS IS THE BEST ANSWER . Store classified data in a locked desk drawer when not in use Maybe What must authorized personnel do before permitting another individual to enter a Sensitive Compartmented Information Facility (SCIF)? What would you do if you receive a game application request on your government computer that includes permission to access your friends, profile information, cookies, and sites visited? -Its classification level may rise when aggregated. c. What similarities and differences are there between plant and animal cells? Do not access website links in e-mail messages. Do not use any personally owned/non-organizational removable media on your organizations systems. What action should you take first? ALways mark classified information appropriately and retrieve classified documents promptly from the printer. Enable automatic screen locking after a period of inactivity. *Spillage Which of the following is a good practice to prevent spillage? Which of the following is a good practice to prevent spillage? Which of the following is a good practice for telework? Of the following, which is NOT a characteristic of a phishing attempt? PII, PHI, and financial information is classified as what type of information? What type of social engineering targets particular individuals, groups of people, or organizations? *Controlled Unclassified Information Which is a best practice for protecting Controlled Unclassified Information (CUI)? Lock your device screen when not in use and require a password to reactivate. **Insider Threat Which scenario might indicate a reportable insider threat? Software that installs itself without the users knowledge. They provide guidance on reasons for and duration of classification of information. asked in Internet by voice (265k points) internet. The email has an attachment whose name contains the word secret. Paul verifies that the information is CUI, includes a CUI marking in the subject header, and digitally signs an e-mail containing CUI. Refer the reporter to your organizations public affairs office. Use only personal contact information when establishing personal social networking accounts, never use Government contact information. the following is true about unclassified data fy23 controlled unclassified information cui quizlet what is true of controlled unclassified information What. Which of these is true of unclassified data? Everything you need to know aboutControlled UnclassifiedInformation(CUI). What action should you take? Controlled Unclassified Information (CUI) Purpose of the CUI Program. To transmit large payments through Fedwire __________, To regulate and supervise the stock market to provide stability and security to individual investors. (Sensitive Information) Which of the following represents a good physical security practice? Neither confirm or deny the information is classified. Malicious code can mask itself as a harmless e-mail attachment, downloadable file, or website. Which Of The Following Statements About Adding Social Networks To Hootsuite Is False? How many potential insiders threat indicators does this employee display. **Use of GFE Under what circumstances is it acceptable to use your Government-furnished computer to check personal e-mail and do other non-work-related activities? Only friends should see all biographical data such as where Alex lives and works. Under what circumstances is it acceptable to check personal email on Government-furnished equipment (GFE)? That trust is bounded by the Oath of Office we took willingly. **Removable Media in a SCIF What portable electronic devices (PEDs) are allowed in a Sensitive Compartmented Information Facility (SCIF)? (Malicious Code) Which email attachments are generally SAFE to open? Follow procedures for transferring data to and from outside agency and non-Government networks. #1) Open WEKA and select "Explorer" under 'Applications'. Which may be a security issue with compressed Uniform Resource Locators (URLs)? ~All documents should be appropriately marked, regardless of format, sensitivity, or classification. Based on the description that follows, how many potential insider threat indicator(s) are displayed? Use personal information to help create strong passwords. Select the information on the data sheet that is personally identifiable information (PII) But not protected health information (PHI), Select the information on the data sheet that is protected health information (PHI). As long as the document is cleared for public release, you may share it outside of DoD. Which of the following is not a best practice to preserve the authenticity of your identity? *Spillage What should you do if a reporter asks you about potentially classified information on the web? What is a proper response if spillage occurs? Which of the following may help to prevent spillage? In which situation below are you permitted to use your PKI token? Not correct Someone calls from an unknown number and says they are from IT and need some information about your computer. Correct. UNCLASSIFIED - CLASSIFICATION MARKINGS FOR TRAINING PURPOSES ONLY Marking in the Electronic Environment Short Student Guide Center for Development of Security Excellence Page 4 UNCLASSIFIED - CLASSIFICATION MARKINGS FOR TRAINING PURPOSES ONLY IM and Chat Instant messages and chats are brief, text-based message exchanges and conversations. *Controlled Unclassified Information Which of the following best describes a way to safely transmit Controlled Unclassified Information (CUI)? What should you do to protect yourself while on social networks? Which of the following is NOT an example of Personally Identifiable Information (PII)? What is the best response if you find classified government data on the internet? How should you securely transport company information on a removable media? Note the websites URL and report the situation to your security point of contact. Use a single, complex password for your system and application logons. (Correct)-It does not affect the safety of Government missions.-It never requires classification markings. It never requires classified markings, it is true about unclassified data. For programmatic questions regarding Controlled Unclassified Information (CUI), including any challenges to CUI marked by EPA, pleasecontact EPA's CUI Program Office. What is the best example of Protected Health Information (PHI)? You can't have 1.9 children in a family (despite what the census might say ). true-statement. What should you do? Which is an untrue statement about unclassified data? What should you do if someone forgets their access badge (physical access)? Attachments contained in a digitally signed email from someone known. Note the websites URL and report the situation to your security point of contact. Ask them to verify their name and office number. SSN, date and place of birth, mothers maiden name, biometric records, PHI, passport number, Subset of PII, health information that identifies the individual, relates to physical or mental health of an individual, provision of health care to an individual, or payment of healthcare for individual. Based on the description that follows, how many potential insider threat indicator(s) are displayed? **Travel Which of the following is true of traveling overseas with a mobile phone? Which of the following is true of Internet of Things (IoT) devices? The physical security of the device. Data about you collected from all sites, apps, and devices that you use can be aggregated to form a profile of you. Ive tried all the answers and it still tells me off. What should you do? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. JavaScript appears to be disabled on this computer. What should be done to sensitive data on laptops and other mobile computing devices? If you participate in or condone it at any time. **Identity management Which of the following is NOT a best practice to preserve the authenticity of your identity? You must have your organization's permission to telework c. You may use unauthorized software as long as your computer's antivirus software is up to date. When traveling or working away from your main location, what steps should you take to protect your devices and data? It is permissible to release unclassified information to the public prior to being cleared. A 3%3\%3% penalty is charged for payment after 303030 days. Correct. Access requires a formal need-to-know determination issued by the Director of National Intelligence.? In the following situations, determine if the duty describes would be one of the Fed is responsible or is not responsible to enforce. **Home Computer Security What should you consider when using a wireless keyboard with your home computer? (Sensitive Compartmented Information) Which of the following best describes the compromise of Sensitive Compartmented Information (SCI)? Executive Order 13556, Controlled Unclassified Information, requires the Executive Branch to establish an open and uniform program for managing [unclassified] information that requires safeguarding or dissemination controls pursuant to and consistent with laws, regulations, and Government-wide policies. The National Archives and Records Administration (NARA) was named the Executive Agent (EA) responsible for overseeing the CUI Program. Unusual interest in classified information. (Physical Security) which Cyberspace Protection Condition (CPCON) establishes a protection priority focus on critical and essential functions only? **Social Networking When is the safest time to post details of your vacation activities on your social networking website? Which of the following statements is NOT true about protecting your virtual identity? Who is responsible for information/data security? A coworker has asked if you want to download a programmers game to play at work. **Classified Data Which of the following is a good practice to protect classified information? Which of the following is true of downloading apps? What should you do after you have ended a call from a reporter asking you to confirm potentially classified information found on the web? Which of these is true of unclassified data? **Social Engineering Which of the following is a way to protect against social engineering? Rating. Store classified data appropriately in a GSA-approved vault/container when not in use. Secure personal mobile devices to the same level as Government-issued systems. Examples are: Patient names, Social Security numbers, Drivers license numbers, insurance details, and birth dates. What is the best response if you find classified government data on the internet? Q&A for work. A colleague removes sensitive information without seeking authorization in order to perform authorized telework. It does not require markings or distribution controls. Preventing an authorized reader of an object from deleting that object B. Call your security point of contact immediately. UNCLASSIFIED is a designation to mark information that does not have potential to damage national security. Adversaries exploit social networking sites to disseminate fake news Correct. (Spillage) What should you do when you are working on an unclassified system and receive an email with a classified attachment? What type of activity or behavior should be reported as a potential insider threat? This bag contains your government-issued laptop. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Correct. The EPA will phase out legacy markings and safeguarding practices as implementation proceeds. Controlled Unclassified Information (CUI) is information that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations, and government-wide policies but is not classified under Executive Order 13526 or the Atomic Energy Act, as amended. How many potential insider threat indicators does this employee display? What is the best way to protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? (Wrong). If aggregated, the classification of the information may not be changed. Which of the following is NOT a potential insider threat? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. What is the best course of action? A lock (LockA locked padlock) or https:// means youve safely connected to the .gov website. The attributes of identified ground seeds are modified to ground points. Which of the following best describes the sources that contribute to your online identity. **Insider Threat Which of the following is NOT considered a potential insider threat indicator? e. Why do Elodea and onion cells have more consistent shapes than human epithelial cells? Remove and take it with you whenever you leave your workstation. Store it in a locked desk drawer after working hours. You must have your organization's permission to telework. Unclassified documents do not need to be marked as a SCIF. Like the number of people in a class, the number of fingers on your hands, or the number of children someone has. Using NIPRNet tokens on systems of higher classification level. Which is a good practice to protect classified information? Which of the following is a best practice for handling cookies? You receive an email from a company you have an account with. (Spillage) What is required for an individual to access classified data? Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. Of the following, which is NOT a method to protect sensitive information? Which of the following statements is TRUE about the use of DoD Public Key Infrastructure (PKI) tokens? As part of the survey the caller asks for birth date and address. Sensitive information may be stored on any password-protected system. you don't need to do anything special to protect this information Malicious code can include viruses, worms, and macros. (Correct) -It does not affect the safety of Government missions. Use only personal contact information when establishing personal social networking accounts, never use Government contact information. Any time you participate in or condone misconduct, whether offline or online. (Sensitive Compartmented Information) What describes how Sensitive Compartmented Information is marked? How should you protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? (Spillage) Which type of information could reasonably be expected to cause serious damage to national security if disclosed without authorization? Which of the following is NOT an example of sensitive information? **Social Networking Which piece if information is safest to include on your social media profile? **Social Networking Which of the following is a security best practice when using social networking sites?