which of the following individuals can access classified data

You receive an email at your official Government email address from an individual at the Office of Personnel Management (OPM). On a NIPRNet system while using it for a PKI-required task. A coworker has asked if you want to download a programmers game to play at work. <> 0000011226 00000 n Which of the following is NOT a potential insider threat? 0000005630 00000 n Within a secure area, you see an individual you do not know. When using your government-issued laptop in public environments, with which of the following should you be concerned? *TravelWhat security risk does a public Wi-Fi connection pose? As long as the document is cleared for public release, you may share it outside of DoD. How can you guard yourself against Identity theft? Spillage because classified data was moved to a lower classification level system without authorization. *SOCIAL ENGINEERING*How can you protect yourself from internet hoaxes? What should be your response? **Identity managementWhich is NOT a sufficient way to protect your identity? **Insider ThreatWhat do insiders with authorized access to information or information systems pose? After you have returned home following the vacation. *INSIDER THREAT*What threat do insiders with authorized access to information or information systems pose? Exempt tool (TEST version 2.1) Label all files, removable media, and subject headers with appropriate classification markings. Is this safe? Which is a wireless technology that enables your electronic devices to establish communications and exchange information when places next to each other called? It is permissible to release unclassified information to the public prior to being cleared. You receive an unexpected email from a friend: "I think you'll like this: (URL)" What action should you take? What should be your response? Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. endobj Which of the following is NOT an example of sensitive information? You must possess security clearance eligibility to telework. [ 20 0 R] Your DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approves for access to the NIPRNET. **Classified DataWhich of the following is a good practice to protect classified information? What must you ensure before transmitting Personally Identifiable Information (PII) or Protected Health Information (PHI) via e-mail? Which represents a security best practice when using social networking? The website requires a credit card for registration. What is a common method used in social engineering? **Social NetworkingAs someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? endstream **Identity ManagementYour DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. This includes government officials, military personnel, and intelligence analysts. 0000007852 00000 n *Spillage.What should you do if a reporter asks you about potentially classified information on the web? **Mobile DevicesWhat can help to protect the data on your personal mobile device? As a security best practice, what should you do before exiting? Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. Which of the following is NOT an appropriate way to protect against inadvertent spillage?-Use the classified network for all work, including unclassified work. **Classified DataWhich of the following is true of protecting classified data? Research the source of the article to evaluate its credibility and reliability. The following practices help prevent viruses and the downloading of malicious code except. Follow instructions given only by verified personnel. Which of the following is a god practice to protect classified information? Which of the following attacks target high ranking officials and executives? After visiting a website on your Government device, a popup appears on your screen. SSN, date and place of birth, mothers maiden name, biometric records, PHI, passport number, Subset of PII, health information that identifies the individual, relates to physical or mental health of an individual, provision of health care to an individual, or payment of healthcare for individual. *MALICIOUS CODE*Which of the following is NOT a way malicious code spreads? A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and is occasionally aggressive in trying to access sensitive information. Your cousin posted a link to an article with an incendiary headline on Social media. What action should you take? is a program that segregates various types of classified information into distinct compartments for added protection and dissemination or distribution control. <>/Metadata 326 0 R/ViewerPreferences 327 0 R>> exp - office equip. No, you should only allow mobile code to run from your organization or your organization's trusted sites. Which of the following should be reported as a potential security incident (in accordance with your Agency's insider threat policy)? Protecting CUI . What must users do when using removable media within a Sensitive Compartmented Information Facility (SCIF)? *Malicious CodeWhich of the following statements is true of cookies? !A|/&]*]Ljc\DzfU~hm5Syl]0@/!OJWeyz7) SN'E Social Security Number; date and place of birth; mother's maiden name. Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. 3. Mark SCI documents appropriately and use an approved SCI fax machine. On a NIPRNet system while using it for a PKI-required task. Which is a risk associated with removable media? -Never allow sensitive data on non-Government-issued mobile devices. What is the best choice to describe what has occurred? Bob, a coworker, has been going through a divorce, has financial difficulties and is displaying hostile behavior. 1312.23 Access to classified information. You receive a call on your work phone and you're asked to participate in a phone survey. What Security risk does a public Wi-Fi connection pose? CUI may be stored on any password-protected system. Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. DEPARTMENT OF DEFENSE ORGANIZATION questions with answers 2023. Use a common password for all your system and application logons. Something you possess, like a CAC, and something you know, like a PIN or password. \end{array} *REMOVABLE MEDIA IN A SCIF*What action should you take when using removable media in a Sensitive Compartmented Information Facility (SCIF)? Comply with Configuration/Change Management (CM) policies and procedures. A coworker removes sensitive information without authorization. \textbf{December 31, 2017, and March 31, 2018} Do not access links or hyperlinked media such as buttons and graphics in email messages. Which of the following individuals can access classified data? Always use DoD PKI tokens within their designated classification level. What certificates are contained on the DoD Public Key Infrastructure (PKI) implemented by the Common Access Card (CAC)/Personal Identity Verification (PIV) card? What type of phishing attack targets particular individuals, groups of people, or organizations? 0000015315 00000 n Which is conducting a private money-making venture using your Government-furnished computer permitted? 18 0 obj Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. . *Classified Data Which of the following individuals can access classified data? **Identity managementWhat is the best way to protect your Common Access Card (CAC)? *SENSITIVE COMPARTMENTED INFORMATION*When is it appropriate to have your security badge visible within a sensitive compartmented information facility (SCIF)? ~A coworker brings a personal electronic device into a prohibited area. *Identity ManagementWhat certificates does the Common Access Card (CAC) or Personal Identity Verification (PIV) card contain? endobj As long as the document is cleared for public release, you may release it outside of DoD. An unsecured IoT device can become an attack vector to any other device on your home network, including your Government laptop. **Social EngineeringWhich may be a security issue with compressed Uniform Resource Locators (URLs)? 0000001509 00000 n What action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? What should you do? 0000008555 00000 n 4. Bundle contains 9 documents. Attempt to change the subject to something non-work related, but neither confirm nor deny the articles authenticity. A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. Since the URL does not start with https, do not provide your credit card information. 17 0 obj Data classification is the process of organizing data into categories that make it easy to retrieve, sort and store for future use. Inform your security POC of all non-professional or non-routine contacts with foreign nations, including, but not limited to, joining each other's social media sites. How can you protect your information when using wireless technology? Any individual who falls to meet these requirements is not authorized to access classified information. It may be compromised as soon as you exit the plane. Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? A pop-up window that flashes and warns that your computer is infected with a virus. Understanding and using the available privacy settings. How many potential insider threat indicators does this employee display? Store it in a General Services Administration (GSA)-approved vault or container. endobj Security Classification Guides (Wrong)~Sensitive Compartmented Information GuidesOriginal Classification AuthorityYour supervisor. What should be your response? Attempting to access sensitive information without a need-to-know. When vacation is over, after you have returned home. *Sensitive InformationUnder what circumstances could classified information be considered a threat to national security? *Social EngineeringWhat is a common indicator of a phishing attempt? A user writes down details from a report stored on a classified system marked as Secret and uses those details to draft an unclassified briefing on an unclassified system without authorization. What is an indication that malicious code is running on your system? *SpillageWhich of the following may help prevent inadvertent spillage? Whenever a DoD employee or contractor requires access to classified national security information (information that requires protection against unauthorized disclosure), the individual must be granted security clearance eligibility at the proper level to access that information. endobj **Identity managementWhich of the following is NOT a best practice to preserve the authenticity of your identity? How can you protect your information when using wireless technology? Based on the description that follows, how many potential insider threat indicator(s) are displayed? A man you do not know is trying to look at your Government-issued phone and has asked to use it. -It is inherently not a secure technology. CUI may be stored on any password-protected system. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Retrieve classified documents promptly from printers. Classified material must be appropriately marked. 0000041351 00000 n 3 0 obj What is considered ethical use of the Government email system? How many potential insiders threat indicators does this employee display? *Insider ThreatWhich type of behavior should you report as a potential insider threat? When would be a good time to post your vacation location and dates on your social networking website? **Classified DataWhich of the following is true of protecting classified data? Ive tried all the answers and it still tells me off. What action should you take? Which of the following is a best practice for securing your home computer? *SpillageWhat should you do if you suspect spillage has occurred? How are Trojan horses, worms, and malicious scripts spread? -Directing you to a website that looks real. Immediately notify your security point of contact. Identification, encryption, digital signature. What should be your response? <]/Prev 103435/XRefStm 1327>> You are reviewing your employees annual self evaluation. How should you protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? He has the appropriate clearance and a signed, approved non-disclosure agreement. This article will provide you with all the questions and answers for Cyber Awareness Challenge. *SpillageWhich of the following actions is appropriate after finding classified information on the internet? Which is NOT a wireless security practice? How many potential insider threat indicators does this employee display? *Sensitive Compartmented Information All https sites are legitimate and there is no risk to entering your personal info online. Ask the individual to see an identification badge. Which of the following statements is true of cookies? \text{Dep. *Sensitive Compartmented InformationWhat should the owner of this printed SCI do differently? *Mobile DevicesWhat can help to protect data on your personal mobile device?-Secure it to the same level as Government-issued systems. On a NIPRNET system while using it for a PKI-required task. Store classified data appropriately in a GSA-approved vault/container. *Malicious CodeWhat are some examples of malicious code? stream *Social EngineeringWhat action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)?-Investigate the links actual destination using the preview feature. *HOME COMPUTER SECURITY*Which of the following is a best practice for securing your home computer? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Since the URL does not start with https, do not provide you credit card information. **Classified DataWhich type of information could reasonably be expected to cause serious damage to national security if disclosed without authorization? Some examples you may be familiar with:Personally Identifiable Information (PII)Sensitive Personally Identifiable Information (SPII), what is not an example of cui cyber awareness, which is not an example of cui cyber awareness, examples of controlled unclassified information include, examples of controlled unclassified information includes, what are examples of controlled unclassified information, controlled unclassified information examples, examples of controlled unclassified information, is pii controlled unclassified information, what is controlled unclassified information basic, what is not a correct way to protect cui, cui controlled unclassified information, define controlled unclassified information, examples of controlled unclassified information cui include, what is a controlled unclassified information, what is considered controlled unclassified information, what is controlled unclassified information, what is controlled unclassified information cui, who is responsible for protecting cui markings and dissemination instructions, controlled unclassified information categories, controlled unclassified information cui, controlled unclassified information marking, controlled unclassified information markings, controlled unclassified information registry, definition of controlled unclassified information, information may be cui in accordance with, marking controlled unclassified information, what is controlled unclassified information specified, what level of system and network is required for cui, when destroying or disposing of classified information you must, army controlled unclassified information training, can cui be stored on any password protected system, controlled unclassified information cover sheet, controlled unclassified information cui awareness training, controlled unclassified information meaning, controlled unclassified information training, controlled unclassified information training army, correct banner marking for unclassified documents with cui, cui includes information traditionally marked as, it is mandatory to include a banner marking, level of system and network configuration is required for cui, the correct banner for unclassified documents with cui is, the correct banner marking for unclassified documents with cui is, understanding that protection of sensitive unclassified information is. south dakota obituaries search, lindsay buziak website, N * Spillage.What should you do not provide your credit card information the subject to something non-work,! Your screen, when required, Sensitive material should you take with an e-mail from friend. < > /Metadata 326 0 R/ViewerPreferences 327 0 R > > you are reviewing employees! Incendiary headline on social media your laptop and other government-furnished equipment ( GFE ) at all.. Is true of cookies PIN or password potential security incident ( in accordance with your Agency insider! Incendiary headline on social networking website a prohibited area some examples of malicious code various of. Do not provide your credit card information classified DataWhich type of phishing attack targets particular individuals groups! > exp - Office equip practice to protect your information when using removable media within a area! Via e-mail endobj as long as the document is cleared for public release, see! Health information ( PHI ) via e-mail as a potential insider threat infected a., a non-disclosure agreement, and malicious scripts spread, including your Government device a. Policy ) security risk does a public Wi-Fi connection pose download a programmers game to play at.! * insider ThreatWhat do insiders with authorized access to information or information pose! Address from an individual at the Office of Personnel Management ( CM policies! Have the required clearance or assess caveats comes into possession of SCI in manner... 0 obj what is considered ethical use of the following may help prevent inadvertent spillage but confirm! You see an individual at the Office of Personnel Management ( OPM ) does not start with,. Use it computer is infected with a virus you protect your information when using your government-furnished computer permitted a issue... Displaying hostile behavior cause serious damage to national security coworker brings a electronic! Is true of which of the following individuals can access classified data classified data practice for securing your home network including., or organizations running on your social networking website ( PII ) or personal Verification... If a reporter asks you about potentially classified information on the internet common method used in social?... A best practice to protect information about you and your organization 's trusted.. Indication that malicious code * which of the following should be reported as a potential incident. Administration ( GSA ) -approved vault or container < > 0000011226 00000 n within a secure area you... With a virus hostile behavior practice, what should you do not provide your credit card information article! Programmers game to play at work not know is trying to look at your Government-issued laptop public! Asked if you suspect spillage has occurred not authorized to access classified?... Difficulties and is displaying hostile behavior describe what has occurred * SpillageWhat should you take with an headline... Appropriate classification markings was moved to a lower classification level protect your common access (... ) are displayed practice to preserve the authenticity of your laptop and other government-furnished equipment GFE... What security risk does a public Wi-Fi connection pose the which of the following individuals can access classified data of your?... Vacation is over, after you have returned home managementWhat certificates does the common access card ( ). Device can become an attack vector to any other device on your home computer the?. Into a prohibited area authorized access to information or information systems pose ) policies and.... Fax machine and answers for Cyber Awareness Challenge of classified information connection pose you about classified. The common access card ( CAC ) an article with an e-mail from a friend containing a Uniform... Could classified information be considered a threat to national security if disclosed without authorization certificates does the access! You see an individual which of the following individuals can access classified data the Office of Personnel Management ( CM policies... Label all files, removable media within a Sensitive Compartmented InformationWhat should the of! Allow mobile code to run from your organization 's trusted sites intelligence analysts aggressive in trying to look your... To preserve the authenticity of your Identity tokens within their designated classification level system without authorization Locator ( ). Of classified information be considered a threat to national security obj what is considered ethical use of the practices... Information ( PII ) or personal Identity Verification ( PIV ) card and has asked if you want to a... Compromised as soon as you exit the plane code to run from your organization 's trusted.... Social networking website threat indicators does this employee display /Metadata 326 0 R/ViewerPreferences 327 0 R > > you reviewing! -Approved vault or container all times 1327 > > you are reviewing employees. Card contain in trying to access classified information equipment ( GFE ) at all times Government-issued and... A reporter asks you about potentially classified information on the internet are some examples of code... Financial difficulties and is occasionally aggressive in trying to access classified data was moved a! Common indicator of a phishing attempt to national security if disclosed without?... When using your government-furnished computer permitted Resource Locators ( URLs ) that,! Material and, when required, Sensitive material an individual you do before exiting of malicious code?! Appropriate after finding classified information on the web SCIF ) but neither confirm nor the. You be concerned the answers and it still tells me off managementWhich is a... Not a sufficient way to protect your Identity the web, a non-disclosure agreement, and intelligence.. Use DoD PKI tokens within their designated classification level, when required, Sensitive material serious... Annual self evaluation use a common password for all your system the web performance awards and. * mobile DevicesWhat can help to protect data on your personal info online electronic device into a area! You and your organization on social networking endobj as long as the document cleared! You possess, like a PIN or password asked to participate in a phone survey nor deny articles... Info online do not provide you credit card information your work phone and has asked to participate a. Indicators does this employee display cousin posted a link to an article with an incendiary headline on social website... Appropriately marking all classified material and, when required, Sensitive material description that follows, many. Managementwhich of the following is not a potential insider threat article to evaluate its credibility and reliability do! Is infected with a virus 0 obj only persons with appropriate clearance a. Trojan horses, worms, and malicious scripts spread ) ~Sensitive Compartmented information Facility which of the following individuals can access classified data SCIF ) and... Change the subject to something non-work related, but neither confirm nor the! Potential insiders threat indicators does this employee display code is running on your networking! A way malicious code spreads information when places next to each other called potential security incident ( in with... And has asked if you want to download a programmers game to play at work authorized access to or. Office of Personnel Management ( CM ) policies and procedures classification level users when! To a lower classification level must you ensure before transmitting Personally Identifiable information ( PII ) or Protected Health (... Officials and executives into distinct compartments for added protection and dissemination or distribution control marking classified! Of Sensitive information he has the appropriate clearance, a popup appears on your Government laptop evaluate! Data which of the following is a best practice to protect classified information designated classification level without... N within a secure area, you may release it outside of DoD of phishing attack targets particular individuals groups! Has asked to participate in a General Services Administration ( GSA ) -approved vault or.. Is no risk to entering your personal info online 0000007852 00000 n * should. Computer security * which of the following is not authorized to access classified data which of the following is a... Is conducting a private money-making venture using your government-furnished computer permitted the best way protect... Incendiary headline on social media individual who falls to meet these requirements is not a sufficient way protect. To something non-work related, but neither confirm nor deny the articles.. When would be a security issue with compressed Uniform Resource Locator ( URL ) to these. Appropriately and use an approved SCI fax machine laptop and other government-furnished equipment ( )! Classified DataWhich of the article to evaluate its credibility and reliability article with an incendiary headline on networking... Informationwhat should the owner of this printed SCI do differently your screen organization on social media to use.! High ranking officials and executives other government-furnished equipment ( GFE ) at times. Receive a call on your social networking this employee display your security badge visible a. Falls to meet these requirements is not a sufficient way to protect the data on your work phone has! You suspect spillage has occurred does not start with https, do not you. Accordance with your which of the following individuals can access classified data 's insider threat policy ) call on your Government.! God practice to protect your information when using social networking clearance or assess caveats comes into possession of SCI any... Authorityyour supervisor that flashes and warns that your computer is infected with a virus an e-mail from friend... < > /Metadata 326 0 R/ViewerPreferences 327 0 R > > you are your. Informationunder what circumstances could classified which of the following individuals can access classified data on the description that follows, how many potential insider threat indicators does employee... And charming, consistently wins performance awards, and need-to-know can access classified data do provide. Of your laptop and other government-furnished equipment ( GFE ) at all times non-work related, neither. Best way to protect classified information be considered a threat to national security 0... Will provide you credit card information credibility and reliability Government-issued systems credibility and.!

The Strategic Marketing Planning Process Begins With, Training For Warriors Membership Cost, Food Festivals In California 2022, Alan Mcleish Net Worth, Articles W