*Sensitive Compartmented InformationWhich of the following best describes the compromise of Sensitive Compartmented Information (SCI)? WebThere are a number of individuals who can access classified data. "I'll pass " What type of activity or behavior should be reported as a potential insider threat? 1 Answer 0 votes answered Aug 3, 2022 by kabita (13.8k points) Best answer Only persons with appropriate clearance, a non-disclosure agreement, and need-to 0000041351 00000 n 0000004057 00000 n In which situation below are you permitted to use your PKI token? False Which of the following is NOT sensitive information? What is a valid response when identity theft occurs? Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. Your health insurance explanation of benefits (EOB). What actions should you take when printing classified material within a Sensitive Compartmented Information Facility (SCIF)? Difficult life circumstances such as substance abuse, divided loyalty or allegiance to the U.S., and extreme, persistent interpersonal difficulties. In order to access this information, these individuals must have security clearance from the appropriate government agency. Web(a) No person may be given access to classified information or material originated by, in the custody, or under the control of the Department, unless the person - (1) Has been determined to be eligible for access in accordance with sections 3.1-3.3 of Executive Order 12968; (2) Has a demonstrated need-to-know; and (3) Has signed an approved nondisclosure \end{array} *Controlled Unclassified InformationWhich of the following is NOT a correct way to protect CUI? **Social NetworkingWhich of the following information is a security risk when posted publicly on your social networking profile? WebWhich of the following individuals can access classified data Cyber Awareness 2022? *Website UseHow can you protect yourself from internet hoaxes? by producing wine in bottles with curved necks, which increases its cost structure. A colleague often makes others uneasy with her persistent efforts to obtain information about classified project where she has no need-to-know, is vocal about her husband overspending on credit cards, and complains about anxiety and exhaustion. How many potential insider threat indicators does a person who is playful and charming, consistently win performance awards, but is occasionally aggressive in trying to access sensitive information? Something you possess like a CAC, and a Pin or Password. wine at a time. Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. How many potential insiders threat indicators does this employee display. **Identity managementWhich is NOT a sufficient way to protect your identity? What is the best way to protect your common access card? At the end of the year, the cost of inventory remaining is $10,000. review. A coworker removes sensitive information without authorization. Transmissions must be between Government e-mail accounts and must be encrypted and digitally signed when possible. A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. 0000001509 00000 n If aggregated, the information could become classified. *Website UseWhat action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? *Malicious CodeAfter visiting a website on your Government device, a popup appears on your screen. Evaluate the causes of the compromiseE-mail detailed information about the incident to your security point of contact (Wrong)Assess the amount of damage that could be caused by the compromise~Contact your security point of contact to report the incident. At the beginning of the year, Bryers Incorporated reports inventory of $8,000. *Insider ThreatWhich of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? *Sensitive Compartmented InformationWhat should the owner of this printed SCI do differently? He has the appropriate clearance and a signed, approved non-disclosure agreement. WebYou must have your organizations permission to telework. WebPotential Impact on Organizations and Individuals . INSCOM Intelligence Oversight and Compliance, Identifying and Safeguarding PII V4.0 (2022), Level I Antiterrorism Awareness Training Oct., Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson, Anderson's Business Law and the Legal Environment, Comprehensive Volume, David Twomey, Marianne Jennings, Stephanie Greene, Operations Management: Sustainability and Supply Chain Management, Service Management: Operations, Strategy, and Information Technology. **Physical SecurityWhich Cyber Protection Condition (CPCON) is the priority focus on critical and essential functions only? WebOnly persons with appropriate clearance, a non-disclosure agreement, and need-to-know can access classified data. False Which of the following is NOT sensitive information? classified-document. 0000011071 00000 n (notify security POC, analysis of media for virus and malicious code, and analyze other workstations in the scif). New interest in learning a foreign language. Which of the following individuals can access classified data? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed, Mark SCI documents appropriately and use an approved SCI fax machine. . When having a conversation involving SCI, what must you do before verbally discussing things aloud? *Malicious CodeWhich of the following is NOT a way that malicious code spreads? 0000000975 00000 n Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. Need-to-know is a determination that an individual requires access to specific classified information in the performance of (or assist in the performance of) lawful and authorized government functions and duties. *Malicious CodeWhat are some examples of malicious code? WebTheodore is seeking access to classified information that he does not need to know to perform his job duties. Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. *Insider Threat Which type of behavior should you report as a potential insider threat? WebThis information can come in the form of, but is not limited to, podcasts, print articles, internet-based articles, books, journals, speeches, television broadcasts, blogs, and postings. Prepare the adjusting entry to record bad debts expense at December 31, 2017. **Social NetworkingWhich of the following is a security best practice when using social networking sites? Data classification helps organizations answer important questions about their data that inform how they mitigate risk and manage data governance policies. To protect CUI: Properly mark all CUI Dr. Baker reports that the sessions addressed Ms. Jones's depression, which poses no national security risk. How can you protect yourself from social engineering?-Follow instructions given only by verified personnel. A pop-up window that flashes and warns that your computer is infected with a virus. Be aware of classification markings and all handling caveats. Precise guidance regarding specific elements of information to be classified. It may be compromised as soon as you exit the plane. Which of the following is NOT considered a potential insider threat indicator? 1 answer. Avoid using the same password between systems or applications. Reviewing and configuring the available security features, including encryption. *SpillageWhat should you do if you suspect spillage has occurred? %PDF-1.4 % Darryl is managing a project that requires access to classified information. A colleague vacations at the beach every year, is married and a father of four, sometimes has poor work quality, and works well with his team. How can you guard yourself against Identity theft? WebThings required to access classified information: Signed SF 312. Which of the following is a god practice to protect classified information? During the year, the company purchases additional inventory for$23,000. Spear phishing. *Sensitive Compartmented InformationWhen should documents be marked within a Sensitive Compartmented Information Facility (SCIF). No, you should only allow mobile code to run from your organization or your organization's trusted sites. 0000001327 00000 n *Sensitive Compartmented InformationWhat must the dissemination of information regarding intelligence sources, methods, or activities follow? When is conducting a private money-making venture using your Government-furnished computer permitted? Which of the following is an example of a strong password? An individual can be granted access to classified information provided the following criteria are satisfied? When classified data is not in use, how can you protect it? Clearance eligibility at the appropriate level. View e-mail in plain text and don't view e-mail in Preview Pane. Key characteristics of each are cited in Table 12.6. 0000034293 00000 n WebWhat is required for an individual to access classified data? A user writes down details from a report stored on a classified system This includes government officials, military personnel, and intelligence analysts. 290 0 obj <> endobj Report the crime to local law enforcement. This includes government officials, military personnel, and intelligence analysts. Security Classification Guides (Wrong)~Sensitive Compartmented Information GuidesOriginal Classification AuthorityYour supervisor. When opening an email, what caution should you use? WebWhich of the following is NOT a criterion used to grant an individual access to classified data? Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. Use your own facility access badge or key code. **Mobile DevicesWhen can you use removable media on a Government system? A coworker has asked if you want to download a programmer's game to play at work. Ask the caller, "What's your full name and phone number?". **Identity managementWhich of the following is NOT a best practice to preserve the authenticity of your identity? -Put the CD in the trash DoD employees are prohibited from using a DoD CAC in card-reader-enabled public devices. **Removable Media in a SCIFWhat portable electronic devices (PEDs) are allowed in a Sensitive Compartmented Information Facility (SCIF)? Memory sticks, flash drives, or external hard drives. 0000005321 00000 n Classified Information can only be accessed by individuals with -All of the above Classified Information is -Assigned a classification level by a supervisor A coworker has left an unknown CD on your desk. It may expose the connected device to malware. What should you do when you are working on an unclassified system and receive an email with a classified attachment? What should you do? Which of the following is a wireless technology that enables your electronic devices to establish communications and exchange information when places next to each other called? The French wine industry is consolidating and consists of only 4 wineries today compared to 10 wineries five years ago. 1. Clearance eligibility at the appropriate level. WebAccess is only permitted to individuals after determining they have a need to know. What should you do? How dotraditional orientations contrast withchange? (shouldn't this be reported to security POC?). What is a good practice for when it is necessary to use a password to access a system or an application? He has the appropriate clearance and a signed, approved, non-disclosure agreement. Jarden Company has credit sales of $3,600,000 for year 2017. What should you do? What should you do? when is it appropriate to have your security bagde visible? The projected additional sales revenue in year 111 is $75,000\$ 75,000$75,000, with associated expenses of $25,000\$ 25,000$25,000. What is a possible indication of a malicious code attack in progress? **Insider ThreatHow many potential insider threat indicators does a coworker who often makes others uneasy by being persistent in trying to obtain information about classified projects to which he has no access, is boisterous about his wife putting them in credit card debt, and often complains about anxiety and exhaustion display? **Removable Media in a SCIFWhat must users ensure when using removable media such as compact disk (CD)? Clearance eligibility at the appropriate level. **Social EngineeringWhat is TRUE of a phishing attack? *SpillageWhich of the following does NOT constitute spillage?-Classified information that should be unclassified and is downgraded. 1 Answer 0 votes answered Aug 3, 2022 by kabita (13.8k points) Best answer Only persons with appropriate clearance, a non-disclosure agreement, and need-to Increasing sales over the Internet have allowed consumers to better research the wines, true-statement. & \text { South Winery } & \text { North Winery } & \text { East Winery } & \text { West Winery } \\ **Classified DataWhat level of damage can the unauthorized disclosure of information classified as Confidential reasonably be expected to cause? The end Damage to national security It is permissible to release unclassified information to the public prior to being cleared. **Insider ThreatBased on the description that follows, how many potential insider threat indicator(s) are displayed? All of the above. How should you respond? Which of the following is a potential insider threat indicator? **Insider ThreatWhat type of activity or behavior should be reported as a potential insider threat? **Social NetworkingWhich of the following best describes the sources that contribute to your online identity? Which of the following terms refers to someone who harms national security through authorized access to information system? **Social NetworkingWhen may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? Label all files, removable media, and subject headers with appropriate classification markings. What type of activity or behavior should be reported as a potential insider threat? WebThis information can come in the form of, but is not limited to, podcasts, print articles, internet-based articles, books, journals, speeches, television broadcasts, blogs, and postings. A program that segregates various types of classified information into distinct compartments for added protection and dissemination or distribution control. Who can be permitted access to classified data? \text { Major customer market } & & & & \\ What is a proper response if spillage occurs. **Website UseWhile you are registering for a conference, you arrive at the website http://www.dcsecurityconference.org/registration/. Call your security point of contact immediately. If the online misconduct also occurs offline~If you participate in or condone it at any timeIf you participate in it while using DoD information systems onlyIf you participate in or condone it during work hours only. Determine if the software or service is authorized. Who can be permitted access to classified data? Appropriate clearance; signed and approved non-disclosure agreement; and need-to-know. *Insider Threat Which type of behavior should you report as a potential insider threat? *Sensitive Compartmented InformationWhen is it appropriate to have your security badge visible within a Sensitive Compartmented Information Facility (SCIF)? A coworker uses a personal electronic device in a secure area where their use is prohibited. **Social NetworkingAs someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? The additional sales revenue and expenses from the advertising program are projected to increase by 101010 percent each year. *Sensitive Compartmented InformationWhen faxing Sensitive Compartmented Information (SCI), what actions should you take? Which classified level is given to information that could reasonably be expected to cause serious damage to national security? -DELETE THE EMAIL. Protecting CUI . WebWhich of the following is NOT a criterion used to grant an individual access to classified data? **Identity ManagementYour DoD Common Access Card (CAC) has a Public Key Infrastructure (PKI) token approved for access to the NIPRNet. CUI may be stored on any password-protected system. What is required for an individual to access classified data? On a NIPRNet system while using it for a PKI-required task. internet-quiz. *Insider Threat Which type of behavior should you report as a potential insider threat? Which of the following individuals can access classified data 2022? Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit you insider status?-Remove your security badge after leaving your controlled area or office building. Determine if the software or service is authorized, Which of the following is an example of removable media. What type of activity or behavior should be reported as a potential insider threat? Structured data are usually human readable and can be indexed. Appropriate clearance, a signed and approved non-disclosure agreement, and need-to-know. *TravelWhat security risk does a public Wi-Fi connection pose?-It may expose the connected device to malware. On the basis of past experience, it estimates the percent of receivables in each age category that will become uncollectible. Your cousin posted a link to an article with an incendiary headline on social media. Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. Which of the following is NOT a way that malicious code spreads? WebDOL internal policy specifies the following security policies for the protection of PII and other sensitive data: It is the responsibility of the individual user to protect data to which they have access. Data format data can be either structured or unstructured. **Website UseHow should you respond to the theft of your identity? Research the source of the article to evaluate its credibility and reliability. *Classified DataWhich of the following individuals can access classified data? Need-to-know. 0000002497 00000 n Webasked in Internet by voice (265k points) Question : Which of the following is true about unclassified data? Darryl is managing a project that requires access to classified information. Maria received an assignment to support a project that requires access to classified information. Which of the following is the best example of Personally Identifiable Information (PII)? Where would you direct him to obtain benchmarking data to help him with his assessment? A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and is occasionally aggressive in trying to access sensitive information. WebYou must have your organizations permission to telework. After clicking on a link on a website, a box pops up and asks if you want to run an application. No. A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. *Identity ManagementWhat is the best way to protect your Common Access Card (CAC) or Personal Identity Verification (PIV) card? true traveling overseas mobile phone cyber awareness. **Social NetworkingYour cousin posted a link to an article with an incendiary headline on social media. Classified information is that which a government or agency deems sensitive enough to national security that access to it must be controlled and restricted. An individual can be granted access to classified information provided the person has been in the Armed Services for 10 years. XXXX NOT CORRECT: Remind those involved that such a discussion should not take place in common areas within a SCIF.