A type of phishing targeted at senior officials. You must have permission from your organization. Alex demonstrates a lot of potential insider threat indicators. Everything you need to know aboutControlled UnclassifiedInformation(CUI). An investment in knowledge pays the best interest.. Unclassified documents do not need to be marked as a SCIF. Research the source to evaluate its credibility and reliability. A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. Follow procedures for transferring data to and from outside agency and non-Government networks. Which of the following is a reportable insider threat activity? Correct. No. Note any identifying information, such as the websites URL, and report the situation to your security POC. Of the following, which is NOT a problem or concern of an Internet hoax? Which of the following is a clue to recognizing a phishing email? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. correct. Some examplesyou may be familiar with: TheFederalCUI Registry,shows authorized categoriesandassociated markings, as well as applicable safeguarding, dissemination, and decontrol procedures. How Do I Answer The CISSP Exam Questions? Select the information on the data sheet that is personally identifiable information (PII). It never requires classification markings, is true about unclassified data. cyber. You are logged on to your unclassified computer and just received an encrypted email from a co-worker. Identification, encryption, and digital signature. Refer the vendor to the appropriate personnel. *Sensitive Compartmented Information Which must be approved and signed by a cognizant Original Classification Authority (OCA)? Of the following, which is NOT a characteristic of a phishing attempt? Follow the steps enlisted below to use WEKA for identifying real values and nominal attributes in the dataset. The answer has been confirmed to be correct. It contains certificates for identification, encryption, and digital signature. Which of the following definitions is true about disclosure of confidential information? Reviewing and configuring the available security features, including encryption. **Social Engineering Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? A colleague often makes others uneasy with her persistent efforts to obtain information about classified project where she has no need-to-know, is vocal about her husband overspending on credit cards, and complains about anxiety and exhaustion. Based on the description that follows, how many potential insider threat indicator(s) are displayed? Which is NOT a wireless security practice? Learn more about Teams Unclassified documents do not need to be marked as a SCIF. Which is an untrue statement about unclassified data? Refer the reporter to your organizations public affairs office. What type of activity or behavior should be reported as a potential insider threat? Which of the following is an example of malicious code? What information most likely presents a security risk on your personal social networking profile? Sensitive information may be stored on any password-protected system. Classified material must be appropriately marked. The age of the driver may top the list of variables. How should you respond? data. cyber. Which of the following is not Controlled Unclassified Information (CUI)? How many potential insider threat indicators does this employee display? What is the best choice to describe what has occurred? CUI may be stored only on authorized systems or approved devices. There are no choices provides which make it hard to pick the untrue statement about unclassified data. Only paper documents that are in open storage need to be marked. Before long she has also purchased shoes from several other websites. Maintain possession of your laptop and other government-furnished equipment (GFE) at all times. How can you protect yourself on social networking sites? Annual DoD Cyber Awareness Challenge Training, DOD Cyber Awareness Challenge 2019: Knowledge, DOD Cyber Awareness Challenge 2019 (DOD-IAA-V, Operations Management: Sustainability and Supply Chain Management, Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson, Anderson's Business Law and the Legal Environment, Comprehensive Volume, David Twomey, Marianne Jennings, Stephanie Greene. What function do Insider Threat Programs aim to fulfill? Which of the following is NOT a typical result from running malicious code? Controlled Unclassified Information (CUI) is information that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and Government-wide policies, but is not classified under Executive Order 13526 "Classified National Security Informat What are examples of CUI? How should you respond? Rating. Sensitive information. Note any identifying information, such as the website's URL, and report the situation to your security POC. Cyber Awareness Flashcards by Jedi Master | Brainscape The EPAs Controlled Unclassified Information (CUI) Program issued its Interim CUI Policy in December 2020. A Coworker has asked if you want to download a programmers game to play at work. **Social Engineering Which of the following is a way to protect against social engineering? Read the latest news from the Controlled Unclassified Information (CUI) program. *Spillage Which of the following may help prevent inadvertent spillage? Which of the following should be done to keep your home computer secure? **Insider Threat Which scenario might indicate a reportable insider threat? Using NIPRNet tokens on systems of higher classification level. A colleague abruptly becomes hostile and unpleasant after previously enjoying positive working relationships with peers, purchases an unusually expensive new car, and has unexplained absences from work. Which of the following is NOT true of traveling overseas with a mobile phone? What should you do after you have ended a call from a reporter asking you to confirm potentially classified info found on the web? Which of the following represents an ethical use of your Government-furnished equipment (GFE)? Note That The Integers Should Be Type Cast To Doubles. Which of the following is NOT a social engineering tip? -TRUE The use of webmail is -is only allowed if the organization permits it Using webmail may bypass built in security features. Cyber Awareness Challenge Knowledge Check 2023 Answers, Cyber Awareness Challenge 2022 Knowledge Check Answers. A colleague has won 10 high-performance awards, can be playful and charming, is not currently in a relationship, and occasionally aggressive in trying to access sensitive information. **Use of GFE When can you check personal e-mail on your Government-furnished equipment (GFE)? What level of damage to national security could reasonably be expected if unauthorized disclosure of Top Secret information occurred? Click on "Open File". *Sensitive Information What is the best example of Personally Identifiable Information (PII)? **Social Engineering What action should you take with an e-mail from a friend containing a compressed Uniform Resource Locator (URL)? Photos of your pet Correct. What must authorized personnel do before permitting another individual to enter a Sensitive Compartmented Information Facility (SCIF)? **Use of GFE Under what circumstances is it acceptable to use your Government-furnished computer to check personal e-mail and do other non-work-related activities? The emission rate of CO 2 from the soils reached the maximum on the 1st day of incubation and the sequence of CO 2 emission rate and cumulative emission under different amendment treatments was as SG > S > G > CK > N (Fig. (Sensitive Information) Which of the following is NOT an example of sensitive information? Correct. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Assuming open storage is always authorized in a secure facility. Remove your security badge, common access card (CAC), or personal identity verification (PIV) card. Download the information. Keeping a database from being accessed by unauthorized visitors C. Restricting a subject at a lower classification level from accessing data at a higher classification level D. Preventing an . **Identity management Which is NOT a sufficient way to protect your identity? Data about you collected from all sites, apps, and devices that you use can be aggregated to form a profile of you. Always take your CAC when you leave your workstation. What should you do if a reporter asks you about potentially classified information on the web? Store classified data in a locked desk drawer when not in use Maybe Follow procedures for transferring data to and from outside agency and non-Government networks. (GFE) When can you check personal e-mail on your Government-furnished equipment (GFE)? d. giving a spanking or a scolding. Why might "insiders" be able to cause damage to their organizations more easily than others? which of the following is true about unclassified data *Sensitive Compartmented Information What must the dissemination of information regarding intelligence sources, methods, or activities follow? Which of the following statements is true? a. Which is a way to protect against phishing attacks? What is considered a mobile computing device and therefore shouldnt be plugged in to your Government computer? What should you do? **Insider Threat What advantages do insider threats have over others that allows them to cause damage to their organizations more easily? Which of the following is not a best practice to preserve the authenticity of your identity? Which of the following is an example of removable media? *Controlled Unclassified Information Which is a best practice for protecting Controlled Unclassified Information (CUI)? What should be your response? asked in Internet by voice (265k points) internet. That trust is bounded by the Oath of Office we took willingly. **Home Computer Security Which of the following is a best practice for securing your home computer? Which is a risk associated with removable media? Which of these is true of unclassified data?-It must be released to the public immediately.-Its classification level may rise when aggregated. Which of the following is a good practice to protect classified information? d. How do the size and shape of a human epithelial cell differ from those of the Elodea and onion cells that you examined earlier? The attributes of identified ground seeds are modified to ground points. Monitor credit card statements for unauthorized purchases, Thumb drives, memory sticks, and flash drives are examples of. Coworker making consistent statements indicative of hostility or anger toward the United States and its policies. **Social Networking Which of the following information is a security risk when posted publicly on your social networking profile? -Ask them to verify their name and office number **Physical Security At which Cyberspace Protection Condition (CPCON) is the priority focus on critical functions only? **Social Engineering Which is a best practice that can prevent viruses and other malicious code from being downloaded when checking your e-mail? Which of the following should you NOT do if you find classified information on the internet? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. Looking at your MOTHER, and screaming THERE SHE BLOWS! Immediately notify your security point of contact. When can you check personal email on your government furnished equipment? If aggregated, the information could become classified. Use a common password for all your system and application logons. A measure of how much useful work each unit of input energy provides. Correct. b. Discuss why gases, such as barbecue propane gas, are sold by mass and not by volume. (Spillage) What should you do when you are working on an unclassified system and receive an email with a classified attachment? Share sensitive information only on official, secure websites. Correct. Any time you participate in or condone misconduct, whether offline or online. *Sensitive Compartmented Information When is it appropriate to have your security badge visible? Which of the following is true of protecting classified data **Social Networking Which of the following is a security best practice when using social networking sites? A type of phishing targeted at high-level personnel such as senior officials. It may be compromised as soon as you exit the plane. Which of the following actions can help to protect your identity? For example, when you buy propane for your barbecue, your tank is placed on a scale while it is filled under high pressure (Figure 7). Avoid talking about work outside of the workplace or with people without a need-to-know. ~All documents should be appropriately marked, regardless of format, sensitivity, or classification. Under which circumstances may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? **Social Networking When is the safest time to post details of your vacation activities on your social networking website? A coworker uses a personal electronic device in a secure area where their use is prohibited. Classified information that should be unclassified and is downgraded. which of the following is true about unclassified data. Where. difficult life circumstances such as substance abuse, divided loyalty or allegiance to the U.S., and extreme, persistent interpersonal difficulties. Report the crime to local law enforcement. What is an indication that malicious code is running on your system? What is the best example of Protected Health Information (PHI)? (Correct)-It does not affect the safety of Government missions.-It never requires classification markings. internet-quiz. A coworker has asked if you want to download a programmer's game to play at work. Unknown data is categorized by the system; an analyst then reviews the results How should you protect a printed classified document when it is not in use? Classified data: (Scene) Which of the following is true about telework? Which of the following does not constitute spillage. Controlled Unclassified Information (CUI) is information that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations, and government-wide policies but is not classified under Executive Order 13526 or the Atomic Energy Act, as amended. **Insider Threat Based on the description that follows, how many potential insider threat indicator(s) are displayed? Your health insurance explanation of benefits (EOB). Which of the following is a good practice for telework? Attempt to change the subject to something non-work related, but neither confirm nor deny the articles authenticity. 1.1 Standard Challenge Answers. Is it okay to run it? What should you do? What is an individual's Personally Identifiable Information (PII) or Protected Health Information (PHI) considered? When is it appropriate to have your security badge visible? What is a possible indication of a malicious code attack in progress? Exceptionally grave damage. Controlled unclassified information. Ensure that the wireless security features are properly configured. Its classification level may rise when aggregated. A colleague vacations at the beach every year, is married and a father of four, sometimes has poor work quality, and works well with his team. **Identity management Which of the following is an example of a strong password? Which of the following is NOT considered a potential insider threat indicator? **Social Networking As someone who works with classified information, what should you do if you are contacted by a foreign national seeking information on a research project? You have reached the office door to exit your controlled area. "Unclassified" or a lack of security marking denotes non-sensitive information. Cyber Awareness 2020 Knowledge Check Flashcards | Quizlet What should you do? Correct, Someone who uses authorized access, wittingly or unwittingly, to harm national security through unauthorized disclosure or other actions that may cause the loss or degradation of resources or capabilities. Classified DVD distribution should be controlled just like any other classified media. Correct. (Travel) Which of the following is a concern when using your Government-issued laptop in public? The proper security clearance and indoctrination into the SCI program. Make note of any identifying information and the website URL and report it to your security office. **Home Computer Security What should you consider when using a wireless keyboard with your home computer? You are having lunch at a local restaurant outside the installation, and you find a cd labeled favorite song. When is it okay to charge a personal mobile device using government-furnished equipment (GFE)? Please click here to see any active alerts. Lionel stops an individual in his secure area who is not wearing a badge. Chinese Hackers Steal Unclassified Data From Navy Contractor Physical security of mobile phones carried overseas is not a major issue. Store it in a locked desk drawer after working hours. What is a way to prevent the download of viruses and other malicious code when checking your e-mail? Ans: True Question 2: The Government Information Security Reform Act (Security Reform Act) of 2000 focuses on management View the full answer **Insider Threat What type of activity or behavior should be reported as a potential insider threat? Your comments are due on Monday. which of the following is true about unclassified data - Weegy You many only transmit SCI via certified mail. Which of the following is an example of a strong password? Store your Common Access Card (CAC) or Personal Identity Verification (PIV) card in a shielded sleeve ~Write your password down on a device that only you access (e.g., your smartphone) Change your password at least every 3 months Enable two-factor authentication whenever available, even for personal accounts. What type of security is part of your responsibility and placed above all else?, If your wireless device is improperly configured someone could gain control of the device? Of the following, which is NOT an intelligence community mandate for passwords? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. You receive an inquiry from a reporter about potentially classified information on the internet. CUI is government created or owned information that requires safeguarding or dissemination controls consistent with applicable laws, regulations and government wide policies. New interest in learning another language? (Spillage) After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. A compromise of Sensitive Compartmented Information (SCI) occurs when a person who does not have the required clearance or access caveats comes into possession of SCI_________.??? PII, PHI, and financial information is classified as what type of information? classified-document. What should you do? ~A coworker brings a personal electronic device into a prohibited area. Explain. A man you do not know is trying to look at your Government-issued phone and has asked to use it. Which method would be the BEST way to send this information? Spear Phishing attacks commonly attempt to impersonate email from trusted entities. correct. Which of the following is NOT a security best practice when saving cookies to a hard drive? Mark SCI documents appropriately and use an approved SCI fax machine. Social Security Number, date and place of birth, mothers maiden name. A program that segregates various types of classified information into distinct compartments for added protection and dissemination or distribution control. It is not corporate intellectual property unless created for or included in requirements related to a government contract. They can become an attack vector to other devices on your home network. **Identity Management Which of the following is the nest description of two-factor authentication? Use personally-owned wired headsets and microphones only in designated areas, New interest in learning a foreign language. What does Personally Identifiable Information (PII) include? When operationally necessary, owned by your organization, and approved by the appropriate authority. Which of the following is true of sharing information in a Sensitive Compartmented Information Facility (SCIF)? Federal agencies routinely generate, use, store, and share information that, while not meeting the threshold for classification as national security or atomic energy information, requires some level of protection from unauthorized access and release. **Website Use How should you respond to the theft of your identity? In unsupervised machine learning, clustering is the most common process used to identify and group similar entities or items together. Which may be a security issue with compressed urls? How can you protect yourself from social engineering? Senior government personnel, military or civilian. __________, To supervise bank holding companies and state member banks __________, To make loans to businesses who want to expand their operations __________, To operate the check-clearing system for the nation __________, to provide financial services to the federal government and serve as the bankers bank for commercial banks and other depositary institutions __________, To serve as the fiscal agent of the U.S. government __________, To place printed paper currency and newly minted coins into circulation __________. What should you do? After work hours, storing sensitive information in unlocked containers, desks, or cabinets if security is not present. A user writes down details from a report stored on a classified system marked as Secret and uses those details to draft an unclassified briefing on an unclassified system without authorization. Which of the following is NOT Government computer misuse? When teleworking, you should always use authorized and software. **Social Networking What should you do if you receive a game application request that includes permission to access your friends, profile information, cookies, and sites visited? (Sensitive Compartmented Information) What describes how Sensitive Compartmented Information is marked? -Classified information that should be unclassified and is downgraded. *Sensitive Compartmented Information What should the owner of this printed SCI do differently? **Insider Threat Based on the description that follows, how many potential insider threat indicator(s) are displayed? There is no way to know where the link actually leads. Use a single, complex password for your system and application logons. A. *Malicious Code After visiting a website on your Government device, a popup appears on your screen. Do not access website links, buttons, or graphics in e-mail. Remove your security badge, common access card (CAC), or personal identity verification (PIV) card.