To protect CUI: Properly mark all CUI Webasked in Internet by voice (265k points) Question : Which of the following is true about unclassified data? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Attempt to change the subject to something non-work related, but neither confirm nor deny the article's authenticity. %PDF-1.4 % *Malicious CodeWhich of the following is NOT a way that malicious code spreads? true-statement. FoundingdateGenericcompetitivestrategyMajorcustomermarket(morethan80%concentration)ProductionsiteSouthWinery1750? Which is true for protecting classified data? *SpillageWhat should you do if you suspect spillage has occurred? What action should you take? **Social EngineeringWhich may be a security issue with compressed Uniform Resource Locators (URLs)? What must you ensure before transmitting Personally Identifiable Information (PII) or Protected Health Information (PHI) via e-mail? Digitally signing e-mails that contain attachments or hyperlinks. . WebDOL internal policy specifies the following security policies for the protection of PII and other sensitive data: It is the responsibility of the individual user to protect data to which they have access. WebThings required to access classified information: Signed SF 312. Mark SCI documents, appropriately and use an approved SCI fax machine. He has the appropriate clearance and a signed approved non-disclosure agreement. **Home Computer SecurityWhich of the following is a best practice for securing your home computer? Under which circumstances may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? Darryl is managing a project that requires access to classified information. Which classified level is given to information that could reasonably be expected to cause serious damage to national security? Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. How many potential insider threat indicators does a person who is playful and charming, consistently win performance awards, but is occasionally aggressive in trying to access sensitive information? When may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? This includes government officials, military personnel, and intelligence analysts. Web(a) No person may be given access to classified information or material originated by, in the custody, or under the control of the Department, unless the person - (1) Has been determined to be eligible for access in accordance with sections 3.1-3.3 of Executive Order 12968; (2) Has a demonstrated need-to-know; and (3) Has signed an approved nondisclosure At the same time, the distribution of income has become more unequal. What type of activity or behavior should be reported as a potential insider threat? Spear phishing. WebThis information can come in the form of, but is not limited to, podcasts, print articles, internet-based articles, books, journals, speeches, television broadcasts, blogs, and postings. Clearance eligibility at the appropriate level. Regardless of state, data classified as confidential must remain confidential. Users must adhere to the rules of behavior defined in applicable Systems Security Plans, DOL and agency guidance. Only persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. *SpillageAfter reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. *TravelWhat security risk does a public Wi-Fi connection pose?-It may expose the connected device to malware. Research the source of the article to evaluate its credibility and reliability. Which of the following is NOT a way that malicious code spreads? What is a possible indication of a malicious code attack in progress? *Social EngineeringWhat action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)?-Investigate the links actual destination using the preview feature. review. Clearance eligibility at the appropriate level. I believe that the South Winery could succeed at following both a cost leadership and a differentiation strategy if its operations were separated What should you do? Restaurants typically make purchases in bulk, buying four to five cases of consolidate in order to survive. Web(a) No person may be given access to classified information or material originated by, in the custody, or under the control of the Department, unless the person - (1) Has been determined to be eligible for access in accordance with sections 3.1-3.3 of Executive Order 12968; (2) Has a demonstrated need-to-know; and (3) Has signed an approved nondisclosure Darryl is managing a project that requires access to classified information. Look for digital signatures if your organization uses them. This information is summarized here. **Removable Media in a SCIFWhat portable electronic devices (PEDs) are allowed in a Sensitive Compartmented Information Facility (SCIF)? growth of small firms, expanding the services sector, and investing more in The end An example is when an individual with access to classified information shares that vital information with a journalist who then releases it. Immediately notify your security point of contact. Government owned PEDs if expressed authorized by your agency. Which of the following individuals can access classified data? 0000011141 00000 n When your vacation is over, after you have returned home. WebStore classified data appropriately in a GSA-approved vault/container. The popup asks if you want to run an application. **Insider ThreatWhat type of activity or behavior should be reported as a potential insider threat? As Chinas growth slows, income inequality speeds up What type of activity or behavior should be reported as a potential insider threat? Data format data can be either structured or unstructured. WebClassified data: Must be handled and stored properly based on classification markings and handling caveats Can only be accessed by individuals with all of the following: o Appropriate clearance o Signed and approved non- disclosure agreement o Need-to-know . startxref You receive an email from the Internal Revenue Service (IRS) demanding immediate payment of back taxes of which you were not aware. **Physical SecurityWhich Cyber Protection Condition (CPCON) is the priority focus on critical and essential functions only? What are some examples of removable media? Label all files, removable media, and subject headers with appropriate classification markings. industry. Which of the following individuals can access classified data? Senior government personnel, military or civilian. **Classified DataWhich of the following is a good practice to protect classified information? endstream endobj 291 0 obj <. Coworker making consistent statements indicative of hostility or anger toward the United States in its policies. What are some potential insider threat indicators? No. Which of the following is a reportable insider threat activity? What type of unclassified material should always be marked with a special handling caveat? WebBe aware of classification markings and all handling caveats. Digitally signed emails are more secure. How many the Cyberspace Protection Conditions (CPCON) are there? Senior government personnel, military or civilian. *Sensitive Compartmented InformationWhen should documents be marked within a Sensitive Compartmented Information Facility (SCIF). WebThings required to access classified information: Signed SF 312. 3. If aggregated, the information could become classified. What is the best way to protect your Common Access Card (CAC)? Classified information is that which a government or agency deems sensitive enough to national security that access to it must be controlled and restricted. What is the best choice to describe what has occurred? **Identity managementWhich of the following is an example of two-factor authentication? How many potential insiders threat indicators does this employee display. *Mobile DevicesWhich of the following is an example of removable media? WebPotential Impact on Organizations and Individuals . **Insider ThreatWhich of the following is NOT considered a potential insider threat indicator? 1 answer. *Insider Threat Which type of behavior should you report as a potential insider threat? Connect to the Government Virtual Private Network (VPN). Dr. Baker reports that the sessions addressed Ms. Jones's depression, which poses no national security risk. At the end of the year, the cost of inventory remaining is $10,000. Structured data are usually human readable and can be indexed. This includes government officials, military personnel, and intelligence analysts. They may be used to mask malicious intent. On December 31, 2017, the company's Allowance for Doubtful Accounts has an unadjusted credit balance of$14.500. WebClassified information may be made available to a person only when the possessor of the information establishes that the person has a valid need to know and the access is essential to the accomplishment of official government duties. You know that this project is classified. Directives issued by the Director of National Intelligence. *SpillageWhich of the following actions is appropriate after finding classified information on the Internet? *Mobile DevicesWhat can help to protect data on your personal mobile device?-Secure it to the same level as Government-issued systems. What type of activity or behavior should be reported as a potential insider threat? *Classified DataWhich of the following individuals can access classified data? Shred personal documents; never share passwords; and order a credit report annually. *SpillageA user writes down details marked as Secret from a report stored on a classified system and uses those details to draft a briefing on an unclassified system without authorization. WebThere are a number of individuals who can access classified data. Don't talk about work outside your workspace unless it is a specifically designated public meeting environment and is controlled by the event planners. Maria received an assignment to support a project that requires access to classified information. Investigate the link's actual destination using the preview feature. It may expose the connected device to malware. human capital and research. true traveling overseas mobile phone cyber awareness. 0000015315 00000 n **Social NetworkingWhich of the following best describes the sources that contribute to your online identity? (shouldn't this be reported to security POC?). **Website UseWhich of the following statements is true of cookies? P2P (Peer-to-Peer) software can do the following except: Allow attackers physical access to network assets. In order to access this information, these individuals must have security clearance from the appropriate government agency. The email provides a website and a toll-free number where you can make a payment. Always use DoD PKI tokens within their designated classification level. xref includes a discussion of the competitive structure of the French wine industry. 0000003786 00000 n He has the appropriate clearance and a signed, approved non-disclosure agreement. *TravelWhat security risk does a public Wi-Fi connection pose? Store it in a General Services Administration (GSA)-approved vault or container. WebBe aware of classification markings and all handling caveats. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. a year. Appropriate clearance, a signed and approved non-disclosure agreement, and need-to-know. *Insider Threat Which type of behavior should you report as a potential insider threat? *Malicious CodeWhich of the following statements is true of cookies? cyber. What is the best example of Protected Health Information (PHI)? true-statement. Increasing sales over the Internet have allowed consumers to better research the wines, data. **Social NetworkingYour cousin posted a link to an article with an incendiary headline on social media. WebWhich of the following individuals can access classified data? **Home Computer SecurityHow can you protect your information when using wireless technology? Which of the following is an example of near field communication (NFC)?-A smartphone that transmits credit card payment information when held in proximity to a credit card reader. Follow the instructions given only by verified personnel. What are some actions you can take to try to protect you identity? classified-document. WebTheodore is seeking access to classified information that he does not need to know to perform his job duties. 0000005454 00000 n 1 Answer 0 votes answered Aug 3, 2022 by kabita (13.8k points) Best answer Only persons with appropriate clearance, a non-disclosure agreement, and need-to WebWhat is required for an individual to access classified data? Damage to national security It is permissible to release unclassified information to the public prior to being cleared. To protect CUI: Properly mark all CUI Winery as a stuck-in-the-middle firm. *SpillageWhich of the following is a good practice to prevent spillage? Your cousin posted a link to an article with an incendiary headline on social media. How should you respond? *Mobile DevicesWhat can help to protect the data on your personal mobile device? An individual can be granted access to classified information provided the person has been in the Armed Services for 10 years. **Identity managementWhich is NOT a sufficient way to protect your identity? WebStore classified data appropriately in a GSA-approved vault/container. internet-quiz. Which of the following is NOT a best practice to preserve the authenticity of your identity? WebWhich of the following is NOT a criterion used to grant an individual access to classified data? Damage to national security It is permissible to release unclassified information to the public prior to being cleared. Use only your personal contact information when establishing your account, *Controlled Unclassified InformationSelect the information on the data sheet that is personally identifiable information (PII) but not protected health information (PHI), Jane JonesSocial Security Number: 123-45-6789, *Controlled Unclassified InformationSelect the information on the data sheet that is protected health information (PHI), Interview: Dr. Nora BakerDr. 0000005321 00000 n In order to access this information, these individuals must have security clearance from the appropriate government agency. Smith tells VanDriesen, In my report I have classified the South What actions should you take upon hearing a discussion involving Sensitive Compartmented Information (SCI) while seated in a cafeteria with an SCI Facility (SCIF)? **Social EngineeringWhat action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? *Social NetworkingYour cousin posted a link to an article with an incendiary headline on social media. Baker was Ms. Jones's psychiatrist for three months. An individual can be granted access to classified information provided the following criteria are satisfied? Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. What is required for an individual to access classified data? **Insider ThreatHow many potential insider threat indicators does a coworker who often makes others uneasy by being persistent in trying to obtain information about classified projects to which he has no access, is boisterous about his wife putting them in credit card debt, and often complains about anxiety and exhaustion display? Which of the following is the best example of Personally Identifiable Information (PII)? Maria received an assignment to support a project that requires access to classified information. Web*Classified Data Which of the following individuals can access classified data?-Darryl is managing a project that requires access to classified information. **Identity ManagementYour DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. Data classification helps organizations answer important questions about their data that inform how they mitigate risk and manage data governance policies. classified-document. replies, I have met members of the management team from the South Winery at a couple of A random sample of surgical procedures was selected each month for 30 consecutive months, and the number of procedures with postoperative complications was recorded. Many consumers are drinking more beer than wine with meals and at social occasions. *Insider ThreatWhat threat do insiders with authorized access to information or information systems pose?-They may wittingly or unwittingly use their authorized access to perform actions that result in the loss or degradation of resources or capabilities. A type of phishing targeted at senior officials. \end{array} A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and is occasionally aggressive in trying to access sensitive information. 0000002497 00000 n What is the best practice while traveling with mobile computing devices? What should be your response? 0000008555 00000 n 1 Answer 0 votes answered Aug 3, 2022 by kabita (13.8k points) Best answer Only persons with appropriate clearance, a non-disclosure agreement, and need-to true traveling overseas mobile phone cyber awareness. Which of the following is a wireless technology that enables your electronic devices to establish communications and exchange information when places next to each other called? Which of the following practices reduces the chance of becoming a target by adversaries seeking insider information? 0000011226 00000 n Refer the reporter to your organization's public affairs office. 0000000016 00000 n WebClassified Information can only be accessed by individuals with All of the above Which of the following definitions is true about disclosure of confidential information? assertions before publishing the final draft of her report. cyber. During the year, the company purchases additional inventory for$23,000. Which of the following is a best practice for securing your home computer? *SpillageWhich of the following actions is appropriate after finding classified information on the internet? WebClassified information that should be unclassified and is downgraded. *Sensitive Compartmented InformationWhich must be approved and signed by a cognizant Original Classification Authority (OCA)? She notes that *SpillageWhich of the following does NOT constitute spillage?-Classified information that should be unclassified and is downgraded. 0000041351 00000 n & \text { Cost leadership } & \text { Cost leadership } & \text { Cost leadership } \\ A coworker has asked if you want to download a programmer's game to play at work. If you participate in or condone it at any time. **Removable Media in a SCIFWhat must users ensure when using removable media such as compact disk (CD)? Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. Which type of behavior should you report as a potential threat?-Hostility or anger toward the United States and its policies. restaurants. A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and is occasionally aggressive in trying to access sensitive information. WebClassified data: Must be handled and stored properly based on classification markings and handling caveats Can only be accessed by individuals with all of the following: o Appropriate clearance o Signed and approved non- disclosure agreement o Need-to-know . wine at a time. 2.2.2. **Identity managementWhat is the best way to protect your Common Access Card (CAC)? cyber-awareness. What type of activity or behavior should be reported as a potential insider threat? Maria received an assignment to support a project that requires access to classified information. Appropriate clearance; signed and approved non-disclosure agreement; and need-to-know. Required Call your security point of contact immediately. WebThings required to access classified information: Signed SF 312. Identify and disclose it with local Configuration/Change Management Control and Property Management authorities. the wine conventions I have attended. What is a proper response if spillage occurs. Darryl is managing a project that requires access to classified information. **Social EngineeringWhich of the following is a way to protect against social engineering? Pictures of your petYour birthdayYour hobbies~Your personal e-mail address. Which of the following is an example of Protected Health Information (PHI)? WebThis information can come in the form of, but is not limited to, podcasts, print articles, internet-based articles, books, journals, speeches, television broadcasts, blogs, and postings. Spillage occurs when information is spilled from a higher classification or protection level to a lower classification or protection level. makes a note to do more research on generic competitive strategies to verify VanDriesens Need-to-know is a determination that an individual requires access to specific classified information in the performance of (or assist in the performance of) lawful and authorized government functions and duties. trailer He has the appropriate clearance and a signed, approved, non-disclosure agreement. Use a common password for all your system and application logons. Darryl is managing a project that requires access to classified information. \text { Generic competitive strategy } & ? 0000004057 00000 n Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit you insider status?-Remove your security badge after leaving your controlled area or office building. Report the crime to local law enforcement, A type of phishing targeted at senior officials. The projected additional sales revenue in year 111 is $75,000\$ 75,000$75,000, with associated expenses of $25,000\$ 25,000$25,000. *Malicious CodeWhat is a possible effect of malicious code?-Files may be corrupted, erased, or compromised. Reviewing and configuring the available security features, including encryption.