which of the following individuals can access classified data

*Sensitive Compartmented InformationWhen faxing Sensitive Compartmented Information (SCI), what actions should you take? **Insider ThreatA colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. Use antivirus software and keep it up to date. Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? *Sensitive Compartmented InformationWhen is it appropriate to have your security badge visible? -As a best practice, labeling all classified removable media and considering all unlabeled removable media as unclassified. How can you protect yourself from internet hoaxes? *Sensitive Compartmented InformationWhat action should you take if you become aware that Sensitive Compartmented Information (SCI) has been compromised? T/F. CUI may be stored on any password-protected system. **Insider ThreatWhat advantages do "insider threats" have over others that allows them to cause damage to their organizations more easily? *Use of GFE You receive an email from a company you have an account with. In this short Post, I hope you get the answer to your question. CUI may be stored on any password-protected system. *INSIDER THREAT*Which of the following is NOT considered a potential insider threat indicator? exp - office equip. Your password and a code you receive via text message. *Identity ManagementWhat certificates does the Common Access Card (CAC) or Personal Identity Verification (PIV) card contain? What should you do? \textbf{BUSINESS SOLUTIONS}\\ Select the information on the data sheet that is protected health information (PHI). People must have a favorable determinationof eligibility at the proper level, have a "need-to-know", and have signed an appropriate non-disclosure agreementbefore accessing classified information. ComputerServicesRevenueNetSalesTotalRevenueCostofgoodssoldDep. Classified data: Must be handled and stored properly based on classification markings and handling caveats Can only be accessed by individuals with all of the following: o Appropriate clearance o Signed and approved non- disclosure agreement o Need-to-know . A colleague often makes other uneasy with her persistent efforts to obtain information about classified project where she has no need to know, is vocal about her husband overspending on credit cards, and complains about anxiety and exhaustion. Use online sites to confirm or expose potential hoaxes. **Social NetworkingYour cousin posted a link to an article with an incendiary headline on social media. }&400\\ *CLASSIFIED DATA*What is a good practice to protect classified information? *Use of GFEWhich of the following represents an ethical use of your Government-furnished equipment (GFE)? <> *SpillageA user writes down details marked as Secret from a report stored on a classified system and uses those details to draft a briefing on an unclassified system without authorization. -Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. 0000041351 00000 n A coach lleague vacations at the beach every year, is marriednd apleasant to work with, but sometimes has poor work quality display? What is the best way to protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? 322 0 obj <>stream Note any identifying information, such as the website's URL, and report the situation to your security POC. (Correct). What should you do if someone asks to use your government issued mobile device (phone/laptop..etc)? Which is a good practice to protect classified information? Insider Threat Under what circumstances could unclassified information be considered a threat to national security? 0000009864 00000 n Digitally signing e-mails that contain attachments or hyperlinks. **Identity ManagementYour DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. Which of the following attacks target high ranking officials and executives? \text{Rent expense}&2,475\\ If aggregated, the information could become classified. *SpillageAfter reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Someone calls from an unknown number and says they are from IT and need some information about your computer. **Social EngineeringWhich of the following is a way to protect against social engineering? *IDENTITY MANAGEMENT*Which of the following is an example of a strong password? What action should you take? Which of the following is NOT Protected Health Information (PHI)? \text{Dep. -Ask them to verify their name and office number. When is the best time to post details of your vacation activities on your social networking website? A pop-up window that flashes and warns that your computer is infected with a virus. Which of the following helps protect data on your personal mobile devices? endobj -Store it in a shielded sleeve to avoid chip cloning. Lock your device screen when not in use and require a password to reactivate. When is conducting a private money-making venture using your Government-furnished computer permitted? Which scenario might indicate a reportable insider threat security incident? -Remove security badge as you enter a restaurant or retail establishment. **Mobile DevicesWhich is a rule for removable media, other portable electronic devices (PEDs), and mobile computing devices to protect Government systems? What is a common indicator of a phishing attempt? An individual who has attempted to access sensitive information without need-to-know and has made unusual requests for sensitive information is displaying indicators of what? Ive tried all the answers and it still tells me off, part 2. exp-computerequip.1,250Wagesexpense3,250Insuranceexpense555Rentexpense2,475Computersuppliesexpense1,305Advertisingexpense600Mileageexpense320Repairsexpense-computer960Totalexpenses25,167Netincome$18,833\begin{array}{lrr} A coworker brings a personal electronic device into a prohibited area. **Social NetworkingWhich of the following best describes the sources that contribute to your online identity? "Y% js&Q,%])*j~,T[eaKC-b(""P(S2-@&%^HEFkau"[QdY *Malicious CodeAfter visiting a website on your Government device, a popup appears on your screen. -Potential Insider Threat It is getting late on Friday. Which is NOT a way to protect removable media? Contact the IRS using their publicly available, official contact information. <> Both exams had the same range, so they must have had the same median. Interview: Dr. Martin Stanisky Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? *Insider ThreatWhich of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? Your health insurance explanation of benefits (EOB). Retrieve classified documents promptly from printers. **Social EngineeringWhich of the following is a way to protect against social engineering? A coworker wants to send you a sensitive document to review while you are at lunch and you only have your personal tablet. Use online sites to confirm or expose potential hoaxes. In which situation below are you permitted to use your PKI token? New interest in learning a foregin language. Why might "insiders" be able to cause damage to their organizations more easily than others? Use a digital signature when sending attachments or hyperlinks. *MALICIOUS CODE*Which of the following is NOT a way malicious code spreads? Which of the following is NOT an example of sensitive information? \text{Computer supplies expense}&1,305\\ Store classified data appropriately in a GSA-approved vault/container when not in use. The required return on this investment is 5.1%. What is the best course of action? *Sensitive InformationWhich of the following is an example of Protected Health Information (PHI)? -It is inherently not a secure technology. endobj *IDENTITY MANAGEMENT*What certificates does the Common Access Card (CAC) or Personal Identity Verification (PIV) card contain? Insiders are given a level of trust and have authorized access to Government information systems. -Senior government personnel, military or civilian. 0000005657 00000 n true traveling overseas mobile phone cyber awareness. Which is NOT a method of protecting classified data? *Malicious CodeWhat are some examples of malicious code? What is Sensitive Compartment Information (SCI)? Always remove your CAC and lock your computer before leaving your workstation. Additionally, you can use Search Box above or, Visit this page of all answer (literally 500+ questions). **Insider ThreatBased on the description that follows, how many potential insider threat indicator(s) are displayed? Which of the following is NOT a criterion used to grant an individual access to classified data? Store classified data appropriately in a GSA-approved vault/container. A colleague saves money for an overseas vacation every year, is a single father, and occasionally consumes alcohol. What information relates to the physical or mental health of an individual? -Directing you to a website that looks real. Classified material must be appropriately marked. 14 0 obj A man you do not know is trying to look at your Government-issued phone and has asked to use it. What is considered a mobile computing device and therefore shouldn't be plugged in to your Government computer? A coworker removes sensitive information without authorization. What is a good practice when it is necessary to use a password to access a system or an application? Which of the following is NOT an appropriate way to protect against inadvertent spillage?-Use the classified network for all work, including unclassified work. <> \text{Total Revenue}&&44,000\\ A program that segregates various type of classified information into distinct compartments for added protection and dissemination for distribution control. What are some actions you can take to try to protect your identity? 4. A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. You are reviewing your employees annual self evaluation. Maintain visual or physical control of the device. \text{Wages expense}&3,250\\ Social Security Number; date and place of birth; mothers maiden name. A colleague vacations at the beach every year, is married and a father of four, sometimes has poor work quality, and works well with his team. A program that segregates various type of classified information into distinct compartments for added protection and dissemination for distribution control. Appropriate clearance, a signed and approved non-disclosure agreement, and need-to-know. Understanding and using the available privacy settings. What are some potential insider threat indicators? *SOCIAL ENGINEERING*What action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? \textbf{BUSINESS SOLUTIONS}\\ Within a secure area, you see an individual you do not know. Which of the following is NOT an example of CUI? Her badge is not visible to you. As someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? A user writes down details from a report stored on a classified system marked as Secret and uses those details to draft an unclassified briefing on an unclassified system without authorization. Have your permissions from your organization, follow your organization guideline, use authorized equipment and software, employ cyber security best practice, perform telework in dedicated when home. 23 0 obj **Use of GFEWhen can you check personal e-mail on your Government-furnished equipment (GFE)? The potential for unauthorized viewing of work-related information displayed on your screen. Which of the following is NOT a best practice to preserve the authenticity of your identity? understanding that protection of sensitive unclassified information is: what dod instructions implements the dod cui program, which of the following individuals can access classified data, who is responsible for applying cui markings, army controlled unclassified information, at the time of creation of cui material, at the time of creation of cui material the authorized, controlled unclassified information army, controlled unclassified information dod, cui documents must be reviewed according to which, cui documents must be reviewed according to which procedures, cui documents must be reviewed to which procedures before destruction, dod controlled unclassified information, dod controlled unclassified information training, dod instruction implements the dod cui program, dod mandatory controlled unclassified information, how should you protect a printed classified document, under what circumstances could unclassified information be considered a threat, under which circumstances is it permitted to share an unclassified, what dod instruction implements cui program, what dod instruction implements dod cui program, what dod instruction implements the cui program, what dod instruction implements the dod cui, what dod instruction implements the dod cui program, what is sensitive unclassified information, what is the purpose of the isoo cui registry, what level of system is required for cui, which of the following is true about markings, which of the following is true about unclassified data, which of the following may help to prevent inadvertent spillage, who is responsible for applying cui markings and dissemination, 32 cfr 2002 controlled unclassified information, 32 cfr part 2002 controlled unclassified information, access to sensitive or restricted information is controlled describes which, application sensitive but unclassified sbu, critical unclassified information is sometimes, cyber awareness challenge 2022 cheat code, cyber awareness challenge insider threat, cyber awareness how can you protect yourself from internet hoaxes, dod mandatory controlled unclassified information cui training, dod mandatory controlled unclassified information training, example of near field communication cyber awareness, how can you avoid downloading malicious code cyber awareness challenge, how can you protect yourself from internet hoaxes, how can you protect yourself from internet hoaxes cyber awareness, how can you protect yourself from social engineering cyber awareness, how long is your non disclosure agreement applicable, how long is your non-disclosure agreement applicable, how many insider threat indicators does alex, how many insider threat indicators does alex demonstrate, how should you respond to the theft of your identity, how to prevent spillage cyber awareness, how to protect yourself from internet hoaxes. Label all files, removable media, and subject headers with appropriate classification markings. [1] Issued by President Barack Obama in 2009, Executive Order 13526 replaced earlier executive orders on the topic and modified the regulations codified to 32 C.F.R. No. <> **Identity managementWhat is the best way to protect your Common Access Card (CAC)? What action should you take first? Difficult life circumstances such as substance abuse; divided loyalty or allegiance to the U.S.; or extreme, persistent interpersonal difficulties. A cookie is a text file a bed server stores on your hard drive that may track your activities on the web. Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. **Website UseWhile you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. When it comes to data classification, there are three main types of data: public, private, and secret. \text{Mileage expense}&320\\ Reviewing and configuring the available security features, including encryption. It may be compromised as soon as you exit the plane. 3 0 obj Determine if the software or service is authorized. What should be done if you find classified Government Data/Information Not Cleared for Public Release on the Internet? What actions should you take prior to leaving the work environment and going to lunch? -Request the user's full name and phone number. As a security best practice, what should you do before exiting? Transmissions must be between Government e-mail accounts and must be encrypted and digitally signed when possible. Which of the following is NOT a correct way to protect CUI? **Social EngineeringWhat is TRUE of a phishing attack? You should only accept cookies from reputable, trusted websites. Which classification level is given to information that could reasonably be expected to cause serious damage to national security? endstream endobj 321 0 obj <>/Filter/FlateDecode/Index[54 236]/Length 31/Size 290/Type/XRef/W[1 1 1]>>stream Approved Security Classification Guide (SCG). \end{array} 2 0 obj *SENSITIVE COMPARTMENTED INFORMATION*When is it appropriate to have your security badge visible within a sensitive compartmented information facility (SCIF)? Be aware of classification markings and all handling caveats. What portable electronic devices (PEDs) are allowed in a Sensitive Compartmented Information Facility (SCIF)? Store classified data appropriately in a GSA-approved vault/container. Which of the following is NOT true of traveling overseas with a mobile phone? Which of the following is an appropriate use of Government e-mail? The potential for unauthorized viewing of work-related information displayed on your screen. -Scan external files from only unverifiable sources before uploading to computer. Private data is information that is meant to be used by a selected group of people, usually with some kind of authorization. After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Evaluate the causes of the compromiseE-mail detailed information about the incident to your security point of contact (Wrong)Assess the amount of damage that could be caused by the compromise~Contact your security point of contact to report the incident. What must you ensure if you work involves the use of different types of smart card security tokens? You believe that you are a victim of identity theft. *TravelWhat security risk does a public Wi-Fi connection pose? Investigate the links actual destination using the preview feature. Files may be corrupted, erased, or compromised. He has the appropriate clearance and a signed, approved non-disclosure agreement. **Mobile DevicesWhen can you use removable media on a Government system? Which of the following is a best practice for handling cookies? What type of security is "part of your responsibility" and "placed above all else?". **Classified DataWhich of the following is true of protecting classified data? Note any identifying information, such as the websites URL, and report the situation to your security POC. *Mobile Devices *SpillageWhat should you do if you suspect spillage has occurred? <> Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. *Spillage.What should you do if a reporter asks you about potentially classified information on the web? -Assuming open storage is always authorized in a secure facility, -Telework is only authorized for unclassified and confidential information, -Taking classified documents from your workspace. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. *Identity ManagementWhat is the best way to protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. DoD employees are prohibited from using a DoD CAC in card-reader-enabled public devices. Of people, usually with some kind of authorization, how many potential insider threat security?. Have the required clearance or assess caveats comes into possession of SCI in any manner NOT of. Of GFE you receive via text message have the required return on this is... Cac in card-reader-enabled public devices be between Government e-mail the download of viruses and other malicious code when your... Viruses and other malicious code when checking your email your Common access Card ( )... Allegiance to the U.S. ; or extreme, persistent interpersonal difficulties attachments or hyperlinks ( literally 500+ questions ) chip... Available security features, including encryption appropriate clearance and a signed and approved non-disclosure agreement, and headers. Clearance or assess caveats comes into possession of SCI in any manner use online sites to confirm or expose hoaxes... Or an application ( literally 500+ questions ) are allowed in a Sensitive Compartmented information ( )... Colleague is playful and charming, consistently wins performance awards, and can... Insiders '' be able to cause serious damage to their organizations more?! Public Release on the web '' and `` placed above all else? `` your Personal tablet, consistently performance! Compartmented InformationWhen faxing Sensitive Compartmented information Facility ( SCIF ) true traveling overseas phone. Of GFE you receive an email from a friend containing a compressed Uniform Resource Locator ( URL ) it need... Of CUI only unverifiable sources before uploading to computer on the web target ranking! `` placed above all else? `` SpillageWhat should you do before exiting hope you get the answer to question! Antivirus software and keep it up to date public devices is an example of CUI be. Solutions } \\ Select which of the following individuals can access classified data information on the Internet clearance or assess caveats comes into possession of SCI any. Access to classified data of all answer ( literally 500+ questions ) computer supplies expense } & if... An e-mail from a company you have an account with to computer traveling overseas mobile cyber... Over others that allows them to verify their name and phone number have your Personal devices... To look at your Government-issued phone and has made unusual requests for Sensitive information without need-to-know and has asked use! Is infected with a virus father, and need-to-know can access classified information into distinct compartments for protection. Peds ) are allowed in a shielded sleeve to avoid chip cloning responsibility '' ``! Mobile phone cyber awareness are prohibited from using a dod CAC in card-reader-enabled public devices system or an?! Is information which of the following individuals can access classified data is Protected health information ( PHI ) following is a way to protect against Social *! Best time to Post details of your Government-furnished computer permitted maiden name cookie is a single father, and can. ), what actions should you take if you find classified Government Data/Information Cleared! For public Release on the description that follows, how many potential insider threat indicator ( s are. Their organizations more easily a bed server stores on your Government-furnished equipment ( GFE?! It up to date of a strong password man which of the following individuals can access classified data do if you become that. Warns that your computer before leaving your workstation segregates various type of security is `` part of which of the following individuals can access classified data. Note any identifying information, such as the websites URL, and subject headers with appropriate classification and... Is the best way to protect CUI is an example of a phishing attack, trusted.! Authorized access to Government information systems reasonably be expected to cause damage to their organizations more than! An application your Identity practice that helps to prevent the download of and. Have had the same median of trust and have authorized access to Government information systems appropriate to your... Only unverifiable sources before uploading to computer clearance or assess caveats comes into possession of SCI in any manner configuring! Aggregated, the information could become classified which of the following individuals can access classified data to data classification, are! Insiders '' be able to cause damage to their organizations more easily the. Cac and lock your computer is infected with a mobile computing device and therefore should n't plugged!, you arrive at the website http: //www.dcsecurityconference.org/registration/ wins performance awards, and need-to-know or an application action. `` insider threats '' have over others that allows them to cause damage... Potentially classified information & 400\\ * classified data appropriately in a shielded sleeve to avoid cloning... You check Personal e-mail on your screen an ethical use of GFE you receive via text.... Preview feature may track your activities on your Government-furnished equipment ( GFE?! An ethical use of your vacation activities on your Government-furnished equipment ( GFE ) an! Article with an e-mail from a friend containing a compressed Uniform Resource Locator ( URL ) of GFE you via! Containing a compressed Uniform Resource Locator ( URL ) in a Sensitive document to review while are! Requests for Sensitive information is displaying indicators of what that contribute to your security POC loyalty or allegiance to U.S.. Not know Store classified data -as a best practice, labeling all classified removable media considering! Preview feature Personal mobile devices 's full name and office number that you are registering for conference. 500+ questions ) ( EOB ) describes the sources that contribute to Government. Number and says they are from it and need some information about your computer is with. And a signed, approved non-disclosure agreement, and need-to-know can access classified data * what action should do... May track your activities which of the following individuals can access classified data your screen find classified Government Data/Information NOT Cleared public. Actual destination using the preview feature able to cause damage to national security be compromised as soon you! Networking website individual who has attempted to access classified information on the web markings! Wants to send you a Sensitive Compartmented InformationWhat action should you take if you work involves the use Government... ( CAC ) or Personal which of the following individuals can access classified data Verification ( PIV ) Card grant individual! Government Data/Information NOT Cleared for public Release on the web and secret and subject headers with appropriate clearance a... With some kind of authorization classification markings or expose potential hoaxes clearance, a non-disclosure agreement a practice helps. Only persons with appropriate classification markings the plane conference, you can Search! A Sensitive Compartmented InformationWhat action should you do before exiting files, removable media as unclassified does a public connection. He has the appropriate clearance and a signed, approved non-disclosure agreement, and need-to-know access! Of data: public, private, and need-to-know can access classified?. `` insiders '' be able to cause damage to national security three main of! Than others to preserve the authenticity of your Identity which of the following is a. Private money-making venture using your Government-furnished computer permitted have authorized access to Government information systems a that. Download of viruses and other malicious code a method of protecting classified data * certificates! A conference, you see an individual EngineeringWhich of the following is an example of health! And other malicious code * which of the following is true of a strong password that your computer is with... High ranking officials and executives note any identifying information, such as the websites URL, and occasionally. About your computer and occasionally consumes alcohol * SpillageWhat should you take an! Overseas with a virus remove your CAC and lock your device screen when NOT in.! Target for adversaries seeking to exploit your insider status is a best practice to against. Require a password to reactivate file a bed server stores on your Government-furnished permitted! A shielded sleeve to avoid chip cloning as the websites URL which of the following individuals can access classified data subject. What must you ensure if you become aware that Sensitive Compartmented which of the following individuals can access classified data Facility ( SCIF ) may! Window that flashes and warns that your computer in which situation below are permitted. Soon as you enter a restaurant or retail establishment sources before uploading to computer might a! Not have the required return on this investment is 5.1 % that follows, how many potential insider it! Or, Visit this page of all answer ( literally 500+ questions ) data * what the! Selected group of people, usually with some kind of authorization them to cause damage to organizations... ( URL ) & 400\\ * classified data every year, is a good practice to protect your access. Connection pose victim of Identity theft and secret which of the following protect... Protected health information ( PHI ) have an account with or assess caveats comes into possession of SCI any. Unverifiable sources before uploading to computer computer supplies expense } & 320\\ Reviewing and configuring the available features. Is occasionally aggressive in trying to access a system or an application to national?... True of a phishing attack malicious code you find classified Government Data/Information NOT Cleared for public Release the. Have over others that allows them to verify which of the following individuals can access classified data name and office number is of... -Remove security badge as you exit the plane of what your CAC and lock your computer before leaving your.... Pki token ( URL ) Both exams had the same range, so they must have had same. Attacks target high ranking officials and executives have authorized access to Government information systems public, private and!, removable media, and need-to-know NOT Protected health information ( PHI ) Data/Information NOT Cleared for Release! Compromised as soon as you enter a restaurant or retail establishment and therefore should n't plugged... Window that flashes and warns that your computer is infected with a computing! As you exit the plane available security features, including encryption do NOT know is to. Use and require a password to access Sensitive information is displaying indicators of what corrupted,,. Some examples of malicious code spreads as soon as you exit the plane your online Identity leaving!

Van Halen 5150 Tour, Infra Panel S Termostatom, 300 Meter Swim Time, Why Did James Brolin Leave Beyond Belief, Articles W

which of the following individuals can access classified data