Correct. not correct. Maintain visual or physical control of the device. All https sites are legitimate and there is no risk to entering your personal info online. Not correct. *Controlled Unclassified Information Which of the following best describes a way to safely transmit Controlled Unclassified Information (CUI)? What should Sara do when publicly available Internet, such as hotel Wi-Fi? **Identity management What is the best way to protect your Common Access Card (CAC)? The email provides a website and a toll-free number where you can make payment. Being cognizant of classification markings and labeling practices are good strategies to avoid inadvertent spillage. Information should be secured in a cabinet or container while not in use. A 3%3\%3% penalty is charged for payment after 303030 days. Third, the neighbor ground points of an unclassified point are searched from multiple subspaces. Is it okay to run it? Your favorite movie. Which of the following is NOT sensitive information? A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and occasionally aggressive in trying to access sensitive information. Note That The Integers Should Be Type Cast To Doubles. See the discussed example before. Never write down the PIN for your CAC. The website requires a credit card for registration. The CAC/PIV is a controlled item and contains certificates for: An individual who has attempted to access sensitive information without need-to-know and has made unusual requests for sensitive information is displaying indicators of what? When is it okay to charge a personal mobile device using government-furnished equipment (GFE)? Classified information that should be unclassified and is downgraded. f. Get an answer. **Mobile Devices What can help to protect the data on your personal mobile device? Use the government email system so you can encrypt the information and open the email on your government issued laptop. Directing you to a website that looks real. What should you do? It is permissible to release unclassified information to the public prior to being cleared. When your vacation is over, after you have returned home. How can you protect your information when using wireless technology? A coworker removes sensitive information without approval. Exceptionally grave damage. Insiders are given a level of trust and have authorized access to Government information systems. Which of the following is a best practice for physical security? Any time you participate in or condone misconduct, whether offline or online. Second, unclassified points are regarded as ground seeds if the distances between the points and the detected planes are less than a buffer difference threshold. Which of the following does NOT constitute spillage? A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. Which of these is true of unclassified data? Correct. **Insider Threat A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. If aggregated, the information could become classified. *Sensitive Compartmented Information What is a Sensitive Compartmented Information (SCI) program? Correct. *Classified Data Unknown data is categorized by the system; an analyst then reviews the results As long as the document is cleared for public release, you may release it outside of DoD. (Spillage) Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? (Spillage) When is the safest time to post details of your vacation activities on your social networking website? He has the appropriate clearance and a signed, approved, non-disclosure agreement. Search by Location. Correct. *Sensitive Compartmented Information When is it appropriate to have your security badge visible? Who designates whether information is classified and its classification level? What level of damage can the unauthorized disclosure of information classified as confidential reasonably be expected to cause? As a best practice, labeling all classified removable media and considering all unlabeled removable media as unclassified. true-statement. Which of the following is true of the Common Access Card (CAC)? Which of the following is NOT a potential insider threat? *Spillage Which of the following actions is appropriate after finding classified information on the Internet? Correct. A medium secure password has at least 15 characters and one of the following. Secure .gov websites use HTTPS What should you do if a reporter asks you about potentially classified information on the web? Use only your personal contact information when establishing your account. Ensure proper labeling by appropriately marking all classified material. Which of the following is NOT a security best practice when saving cookies to a hard drive? Sensitive information. Which is an untrue statement about unclassified data? Label all files, removable media, and subject headers with appropriate classification markings. Neither confirm or deny the information is classified. By Quizzma Team / Technology. Connect to the Government Virtual Private Network (VPN). What should be done if you find classified Government Data/Information Not Cleared for Public Release on the Internet? Log in for more information. **Removable Media in a SCIF What must users ensure when using removable media such as compact disk (CD)? You have reached the office door to exit your controlled area. A man you do not know is trying to look at your Government-issued phone and has asked to use it. It is not corporate intellectual property unless created for or included in requirements related to a government contract. The annual Cyber Awareness Challenge is a course that helps authorized users learn how to best avoid and reduce threats and vulnerabilities in an organizations system. **Social Networking When is the safest time to post details of your vacation activities on your social networking profile? How should you securely transport company information on a removable media? Thats the only way we can improve. They may wittingly or unwittingly use their authorized access to perform actions that result in the loss or degradation of resources or capabilities. The Chinese Spy Balloon Showdown The discovery of a Chinese surveillance balloon floating over the United States has added to the rising tensions between the two superpowers. correct. Looking for https in the URL. **Social Networking Which of the following information is a security risk when posted publicly on your social networking profile? Malicious code can do damage by corrupting files, erasing your hard drive, and/or allowing hackers access. It never requires classification markings, is true about unclassified data. Within a secure area, you see an individual you do not know. It is created or received by a healthcare provider, health plan, or employer. You must have your organization's permission to telework c. You may use unauthorized software as long as your computer's antivirus software is up to date. Have your permissions from your organization, follow your organization guideline, use authorized equipment and software, employ cyber security best practice, perform telework in dedicated when home. UNCLASSIFIED is a designation to mark information that does not have potential to damage national security. Do not download it. In addition to avoiding the temptation of greed to betray his country, what should Alex do differently? (Spillage) What is required for an individual to access classified data? Report the crime to local law enforcement. How should you protect a printed classified document when it is not in use? Even within a secure facility, dont assume open storage is permitted. CUI includes, but is not limited to Controlled Technical Information (CTI), Personally Identifiable Information (PII), Protected Health Information (PHI), financial information, personal or payroll information, proprietary data and operational information. Call your security point of contact immediately. **Social Networking As someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? Not correct Which is NOT a method of protecting classified data? d. giving a spanking or a scolding. Which of the following is NOT an example of CUI? Understanding and using the available privacy settings. tell your colleague that it needs to be secured in a cabinet or container. Which of the following is a potential insider threat indicator? **Home Computer Security How can you protect your information when using wireless technology? The Registry is updated as agencies continue to submit governing authorities that authorize the protection and safeguarding of sensitive information. Adversaries exploit social networking sites to disseminate fake news. A smartphone that transmits credit card payment information when held in proximity to a credit card reader. How can you protect your organization on social networking sites? When unclassified data is aggregated, its classification level may rise. CPCON 4 (Low: All Functions) You receive an unexpected email from a friend: I think youll like this: https://tinyurl.com/2fcbvy. What action should you take? Which of the following is an example of two-factor authentication? What type of activity or behavior should be reported as a potential insider threat? What should you do? How should you protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? What can help to protect the data on your personal mobile device. How many potential insiders threat indicators does this employee display. ! (A type of phishing targeted at senior officials) Which is still your FAT A$$ MOTHER! What should you do? Correct, Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. A colleague has visited several foreign countries recently, has adequate work quality, speaks openly of unhappiness with U.S. foreign policy, and recently had his car repossessed. How can you protect yourself from social engineering? What is the best choice to describe what has occurred? not correct (Insider Threat) Based on the description that follows, how many potential insider threat indicator(s) are displayed? Unclassified is a security classification assigned to official information that does not warrant the assignment of Confidential, Secret, or Top Secret markings but which is not publicly-releasable without authorization. Always check to make sure you are using the correct network for the level of data. Correct. CPCON 1 (Very High: Critical Functions) How should you respond? difficult life circumstances such as substance abuse, divided loyalty or allegiance to the U.S., and extreme, persistent interpersonal difficulties. Follow instructions given only by verified personnel. Which of the following is true of traveling overseas with a mobile phone. You are working at your unclassified system and receive an email from a coworker containing a classified attachment. Which of the following is an example of malicious code? **Classified Data Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? **Classified Data Which of the following is true of protecting classified data? Which Cyber Protection Condition (CPCON) establishes a protection priority focus on critical functions only? *Sensitive Information Which of the following is an example of Protected Health Information (PHI)? What is the danger of using public Wi-Fi connections? What should you do after you have ended a call from a reporter asking you to confirm potentially classified info found on the web? Do not access website links, buttons, or graphics in e-mail. Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? How can you protect your information when using wireless technology? As long as the document is cleared for public release, you may share it outside of DoD. Compute The Average Kids Per Family. correct. What information relates to the physical or mental health of an individual? Proactively identify potential threats and formulate holistic mitigation responses. Which of the following does not constitute spillage. Only use Government-furnished or Government-approved equipment to process PII. NARA has the authority and responsibility to manage the CUI Program across the Federal government. correct. In setting up your personal social networking service account, what email address should you use? An official website of the United States government. It contains certificates for identification, encryption, and digital signature. Unclassified information can become a threat to national security. Added 8/5/2020 8:06:16 PM. A coworker wants to send you a sensitive document to review while you are at lunch and you only have your personal tablet. *Sensitive Compartmented Information What should the participants in this conversation involving SCI do differently? What security device is used in email to verify the identity of sender? Sanitized information gathered from personnel records. Is it permitted to share an unclassified draft document with a non-DoD professional discussion group? This is information that, if released to the public, carries no injury to personal, industry, or government interests. You must have your organizations permission to telework. (Correct) -It does not affect the safety of Government missions. What action is recommended when somebody calls you to inquire about your work environment or specific account information? Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. (Mobile Devices) Which of the following statements is true? Media containing Privacy Act information, PII, and PHI is not required to be labeled. **Classified Data Which type of information could reasonably be expected to cause serious damage to national security if disclosed without authorization? Remove your security badge, common access card (CAC), or personal identity verification (PIV) card. Note the websites URL and report the situation to your security point of contact. Which of the following is a good practice to prevent spillage. **Social Engineering How can you protect yourself from internet hoaxes? Refer the reporter to your organizations public affairs office. Classified material must be appropriately marked. Which of the following is NOT a typical result from running malicious code? Search for an answer or ask Weegy. When gases are sold they are usually compressed to high pressures. A Coworker has asked if you want to download a programmers game to play at work. 1.1.5 Controlled Unclassified Information. **Travel Which of the following is true of traveling overseas with a mobile phone? 1.1.2 Classified Data. Where. Which scenario might indicate a reportable insider threat? A compromise of Sensitive Compartmented Information (SCI) occurs when a person who does not have the required clearance or access caveats comes into possession of SCI_________.??? Controlled unclassified information. Found a mistake? Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? Government-owned PEDs, if expressly authorized by your agency. (Sensitive Information) What must the dissemination of information regarding intelligence sources, methods, or activities follow? What is the best example of Protected Health Information (PHI)? Which of the following personally-owned computer peripherals is permitted for use with Government-furnished equipment? What level of damage can the unauthorized disclosure of information classified as Top Secret reasonably be expected to cause? **Use of GFE Under what circumstances is it acceptable to use your Government-furnished computer to check personal e-mail and do other non-work-related activities? Appropriate clearance; signed and approved non-disclosure agreement; and need-to-know. How Do I Answer The CISSP Exam Questions? b. taking away a toy or treat not correct. Question 1: The business impact analysis (BIA) identifies the resources for which a business continuity plan (BCP) is necessary. **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sires visited? Dofficult life circumstances, such as death of spouse. Which of the following attacks target high ranking officials and executives? Your cousin posted a link to an article with an incendiary headline on social media. Avoid talking about work outside of the workplace or with people without a need-to-know. What are the requirements to be granted access to sensitive compartmented information (SCI)? A coworker uses a personal electronic device in a secure area where their use is prohibited. **Identity management Which of the following is NOT a best practice to preserve the authenticity of your identity? Only allow mobile code to run from your organization or your organizations trusted sites. (Insider Threat) A colleague vacations at the beach every year, is married and a father of four, his work quality is sometimes poor, and he is pleasant to work with. Which of the following is true about unclassified data? Phishing can be an email with a hyperlink as bait. What should you do? Note any identifying information and the websites Uniform Resource Locator (URL). Which of the following is an example of removable media? **Social Engineering What is TRUE of a phishing attack? Unauthorized Disclosure of Classified Information and Controlled Unclassified Information . What should you do? How many potential insider threat indicators does this employee display? Filter by: All $ Off % Off Free Online Offline. EPA anticipates beginning CUI practices (designating, marking, safeguarding, disseminating, destroying, and decontrolling) starting in FY2023. They can become an attack vector to other devices on your home network. Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? This button displays the currently selected search type. What action should you take? Spillage occurs when information is spilled from a higher classification or protection level to a lower classification or protection level. You find information that you know to be classified on the Internet. Historically, each agency developed its own practices for sensitive unclassified information, resulting in a patchwork of systems across the Executive branch, in which similar information might be defined or labeled differently, or where dissimilar information might share a definition and/or label. Which of the following is an example of Protected Health Information (PHI)? What certificates are contained on the Common Access Card (CAC)? Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. You know that this project is classified. Lionel stops an individual in his secure area who is not wearing a badge. Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. Her badge is not visible to you. -It must be released to the public immediately. Select the information on the data sheet that is personally identifiable information (PII) But not protected health information (PHI), Select the information on the data sheet that is protected health information (PHI). 1.To provide opportunities for individuals and businesses to open checking accounts __________, To write rules and guidelines for financial institutions under its supervision __________, To be the lender of last resort for financial institutions __________, To conduct the nations monetary policy with the goals of maintaining full employment and price stability __________, 5. How are Trojan horses, worms, and malicious scripts spread? Which of the following should be reported as a potential security incident? Use TinyURLs preview feature to investigate where the link leads. What should you do if someone forgets their access badge (physical access)? Which of the following is true of telework? Which of the following is true of using DoD Public key Infrastructure (PKI) token? The questions are broken into the following sections: Controlled Unclassified Information (CUI) isinformation that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies,but is not classified underExecutive Order 13526 Classified National Security Informationorthe Atomic Energy Act, as amended. Someone calls from an unknown number and says they are from IT and need some information about your computer. How can you guard yourself against Identity theft? Retrieve classified documents promptly from printers. Classified material must be appropriately marked. What is the best choice to describe what has occurred? Which of the following is NOT a home security best practice? A pop-up window that flashes and warns that your computer is infected with a virus. -It never requires classification markings. All https sites are legitimate. Connect and share knowledge within a single location that is structured and easy to search. In unsupervised machine learning, clustering is the most common process used to identify and group similar entities or items together. Which of the following is NOT an example of sensitive information? You have reached the office door to exit your controlled area. How can you avoid downloading malicious code? ~A coworker brings a personal electronic device into a prohibited area. *Spillage Which of the following may help prevent inadvertent spillage? The EPA will phase out legacy markings and safeguarding practices as implementation proceeds. Classified material must be appropriately marked. What should you do? Which of the following must you do before using an unclassified laptop and peripherals in a collateral classified environment? When leaving your work area, what is the first thing you should do? Setting weekly time for virus scan when you are not on the computer and it is powered off. Maybe How many potential insider threat indicators does this employee display? A program that segregates various type of classified information into distinct compartments for added protection and dissemination for distribution control. *Controlled Unclassified Information Which of the following is NOT an example of CUI? Only friends should see all biographical data such as where Alex lives and works. Linda encrypts all of the sensitive data on her government issued mobile devices. **Social Engineering Which of the following is a way to protect against social engineering? CUI is an umbrella term that encompasses many different markings toidentifyinformationthat is not classified but which should be protected. **Social Engineering Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? Which of the following should be reported as a potential security incident (in accordance with your Agencys insider threat policy)? **Classified Data What is required for an individual to access classified data? Based on the description that follows, how many potential insider threat indicator(s) are displayed? What is an individual's Personally Identifiable Information (PII) or Protected Health Information (PHI) considered?