Exceptionally grave damage. Historically, each agency developed its own practices for sensitive unclassified information, resulting in a patchwork of systems across the Executive branch, in which similar information might be defined or labeled differently, or where dissimilar information might share a definition and/or label. The annual Cyber Awareness Challenge is a course that helps authorized users learn how to best avoid and reduce threats and vulnerabilities in an organizations system. Public service, notably service in the United States Department of Defense or DoD, is a public trust. Unclassified documents do not need to be marked as a SCIF. When gases are sold they are usually compressed to high pressures. (removable media) If an incident occurs involving removable media in a Sensitive Compartmented Information Facility (SCIF), what action should you take? The date of full implementation of the CUI Program will be announced by the EPAs CUI Senior Agency Official (CUI SAO) and updated here on EPAs public web page. Note That The Integers Should Be Type Cast To Doubles. 1.1 Standard Challenge Answers. Lionel stops an individual in his secure area who is not wearing a badge. Linda encrypts all of the sensitive data on her government issued mobile devices. While it may seem safer, you should NOT use a classified network for unclassified work. It is permissible to release unclassified information to the public prior to being cleared. (Wrong). **Insider Threat What type of activity or behavior should be reported as a potential insider threat? In which situation below are you permitted to use your PKI token? What action should you take? **Social Engineering Which is a best practice that can prevent viruses and other malicious code from being downloaded when checking your e-mail? **Insider Threat Which of the following should be reported as a potential security incident? Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. Top Secret information could be expected to cause exceptionally grave damage to national security of disclosed. What type of data must be handled and stored properly based on classification markings and handling caveats? A coworker has asked if you want to download a programmer's game to play at work. How many potential insider threat indicators does this employee display? Always take your CAC when you leave your workstation. Dont allow other access or to piggyback into secure areas. All to Friends Only. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. A lock (LockA locked padlock) or https:// means youve safely connected to the .gov website. Decline to let the person in and redirect her to security. (Sensitive Information) What certificates are contained on the Common Access Card (CAC)? (Sensitive Information) Which of the following is true about unclassified data? Telework is only authorized for unclassified and confidential information. Which scenario might indicate a reportable insider threat? **Classified Data When classified data is not in use, how can you protect it? (Sensitive Information) What should you do if a commercial entity, such as a hotel reception desk, asks to make a photocopy of your Common Access Card (CAC) for proof of Federal Government employment? Research the source of the article to evaluate its credibility and reliability. Which of the following is true of the Common Access Card (CAC)? Not correct What is the best response if you find classified government data on the internet? A. Within a secure area, you see an individual you do not know. What kind of information could reasonably be expected to cause serious damage to national security in the event of unauthorized disclosure? Which of the following statements is NOT true about protecting your virtual identity? How many indicators does this employee display? How many potential insider threat indicators does this employee display? Which is a good practice to protect classified information? A coworker removes sensitive information without authorization. *Spillage After reading an online story about a new security project being developed on the military installation where you work, your neighbor asks you to comment about the article. Please click here to see any active alerts. Correct. Power off any mobile devices when entering a secure area. What should you do? Which of the following is NOT Government computer misuse? Contact the IRS using their publicly available, official contact information. New interest in learning another language, Which of the following is a good practice to protect classified information. Taking classified documents from your workspace. What describes how Sensitive Compartmented Information is marked? Attempt to change the subject to something non-work related, but neither confirm nor deny the articles authenticity. What is the best course of action? Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIC) card. Unusual interest in classified information. What action should you take? You find information that you know to be classified on the Internet. Always check to make sure you are using the correct network for the level of data. Unclassified documents do not need to be marked as a SCIF. After work hours, storing sensitive information in unlocked containers, desks, or cabinets if security is not present. *Spillage You find information that you know to be classified on the Internet. Which of the following may help to prevent inadvertent spillage? Which is a way to protect against phishing attacks? *Sensitive Compartmented Information What should the owner of this printed SCI do differently? **Classified Data What is a good practice to protect classified information? How can you guard yourself against Identity theft? He has the appropriate clearance and a signed, approved, non-disclosure agreement. correct. internet-quiz. **Physical Security What is a good practice for physical security? **Travel What security risk does a public Wi-Fi connection pose? What should you do? Correct. Federal agencies routinely generate, use, store, and share information that, while not classified, still requires some level of protection from unauthorized access and release. What should you do if someone asks to use your government issued mobile device (phone/laptop..etc)? a. putting a child in time-out *Spillage Which of the following is a good practice to prevent spillage? What should you do? Use your own security badge, key code, or Common Access Card (CAC)/Personal Identity Verification (PIV) card. Course Introduction Introduction . Malicious code can include viruses, worms, and macros. Write your password down on a device that only you access. Who is responsible for information/data security? Ans: True Question 2: The Government Information Security Reform Act (Security Reform Act) of 2000 focuses on management View the full answer cyber. You check your bank statement and see several debits you did not authorize. Only use Government-furnished or Government-approved equipment to process PII. Of the following, which is NOT a method to protect sensitive information? Note any identifying information and the websites URL. An investment in knowledge pays the best interest.. What level of damage to national security can you reasonably expect Top Secret information to cause if disclosed? You are leaving the building where you work. Correct What is required for an individual to access classified data? *Sensitive Information Under which circumstances is it permitted to share an unclassified draft document with a non-DoD professional discussion group? Which of the following is NOT a type of malicious code? Avoid using non-Bluetooth-paired or unencrypted wireless computer peripherals. A trusted friend in your social network posts a link to vaccine information on a website unknown to you. Which of the following is true of protecting classified data? (Spillage) Which of the following practices may reduce your appeal as a target for adversaries seeking to exploit your insider status? What action should you take? *Spillage What should you do if you suspect spillage has occurred? What type of social engineering targets particular individuals, groups of people, or organizations? You receive an inquiry from a reporter about potentially classified information on the internet. What actions should you take with a compressed Uniform Resource Locator (URL) on a website known to you? (Malicious Code) Which of the following is NOT a way that malicious code spreads? Malicious code can do damage by corrupting files, erasing your hard drive, and/or allowing hackers access. A user writes down details from a report stored on a classified system marked as Secret and uses those details to draft an unclassified briefing on an unclassified system without authorization. A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. classified-document. *Insider Threat Which of the following is a potential insider threat indicator? Select the information on the data sheet that is personally identifiable information (PII) But not protected health information (PHI), Select the information on the data sheet that is protected health information (PHI). (social networking) When is the safest time to post details of your vacation activities on your social networking profile? The CUIProgramisan unprecedented initiative to standardize practices across more than 100 separate departments and agencies, as well asstate, local,tribal and, private sector entities; academia; and industry. Which method would be the BEST way to send this information? (Malicious Code) Which of the following is true of Internet hoaxes? What level of damage can the unauthorized disclosure of information classified as Top Secret reasonably be expected to cause? A colleague removes sensitive information without seeking authorization in order to perform authorized telework. The email has an attachment whose name contains the word secret. What certificates are contained on the Common Access Card (CAC)? Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? Ensure that the wireless security features are properly configured. This button displays the currently selected search type. Maintain visual or physical control of the device. To transmit large payments through Fedwire __________, To regulate and supervise the stock market to provide stability and security to individual investors. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. Follow procedures for transferring data to and from outside agency and non-Government networks. What should you do? What can be used to track Marias web browsing habits? . (Spillage) When is the safest time to post details of your vacation activities on your social networking website? Read the latest news from the Controlled Unclassified Information (CUI) program. Keep your operating system and software up to date: This will help patch any security vulnerabilities in your software. (Sensitive Information) Which of the following is NOT an example of sensitive information? The EPAs Controlled Unclassified Information (CUI) Program issued its Interim CUI Policy in December 2020. New answers. Law Enforcement Sensitive (LES),and others. There is no way to know where the link actually leads. Carrying his Social Security Card with him, DoD employees are prohibited from using a DoD CAC in card-reader-enabled public device, Assigned a classification level by a supervisor. (Travel) Which of the following is a concern when using your Government-issued laptop in public? Security Classification Guides (SCGs).??? If you participate in or condone it at any time. Store classified data appropriately in a GSA-approved vault/container when not in use. Second, unclassified points are regarded as ground seeds if the distances between the points and the detected planes are less than a buffer difference threshold. What should be your response? What is NOT Personally Identifiable Information (PII)? In the following situations, determine if the duty describes would be one of the Fed is responsible or is not responsible to enforce. Only friends should see all biographical data such as where Alex lives and works. Were mitochondria as abundant in human epithelial cells as in onion epidermal cells (procedure 4.6)? What should be done to protect against insider threats? Click the card to flip Flashcards Learn Test Match Created by Jamie_Lancaster Terms in this set (24) (Malicious Code) What are some examples of removable media? Looking at your MOTHER, and screaming THERE SHE BLOWS! Report the crime to local law enforcement. Keeping a database from being accessed by unauthorized visitors C. Restricting a subject at a lower classification level from accessing data at a higher classification level D. Preventing an . DoD Unclassified data: Must be cleared before being released to the public May require applci aton i of Controled l Uncasl sed Iifi nformaton i (CU)I access and distribution controls Must be clearly marked as Unclassified or CUI if included in a classified document or classified storage area 8. A coworker is observed using a personal electronic device in an area where their use is prohibited. Memory sticks, flash drives, or external hard drives. Which of the following is a best practice for physical security? A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. (Spillage) What advantages do insider threats have over others that allows them to cause damage to their organizations more easily? In unsupervised machine learning, clustering is the most common process used to identify and group similar entities or items together. Which of the following is NOT a typical result from running malicious code? Which of the following is NOT a correct way to protect sensitive information? **Classified Data Which of the following is true of telework? Classified information that should be unclassified and is downgraded. **Classified Data Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? When using a fax machine to send sensitive information, the sender should do which of the following? Which of these is true of unclassified data? Digitally signed e-mails are more secure. Let us have a look at your work and suggest how to improve it! A type of phishing targeted at high-level personnel such as senior officials. (Malicious Code) What is a good practice to protect data on your home wireless systems? Tell us about it through the REPORT button at the bottom of the page. Which of the following represents a good physical security practice? How do you respond? If aggregated, the classification of the information may not be changed. Using webmail may bypass built in security features. Controlled Unclassified Information (CUI): Controlled Unclassified information was defined in the Executive Order 13556 as information held by or generated for the Federal Government that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations and government-wide policies that isn't classified Which of the following is a practice that helps to prevent the download of viruses and other malicious code when checking your email? **Use of GFE What is a critical consideration on using cloud-based file sharing and storage applications on your Government-furnished equipment (GFE)? Federal agencies routinely generate, use, store, and share information that, while not meeting the threshold for classification as national security or atomic energy information, requires some level of protection from unauthorized access and release. Infographic - Text version Infographic [PDF - 594 KB] Report a problem or mistake on this page Date modified: 2020-12-14 The website requires a credit card for registration. -Its classification level may rise when aggregated. Correct. Verify the identity of all individuals.??? **Identity Management Which of the following is the nest description of two-factor authentication? As a security best practice, what should you do before exiting? What should be done to sensitive data on laptops and other mobile computing devices? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complain about the credit card bills that his wife runs up. **Identity management What is the best way to protect your Common Access Card (CAC)? You receive an email from the Internal Revenue Service (IRS) demanding immediate payment of back taxes of which you were not aware. Discrete data involves whole numbers (integers - like 1, 356, or 9) that can't be divided based on the nature of what they are. Confirm the individuals need-to-know and access. Use only personal contact information when establishing personal social networking accounts, never use Government contact information. Since the URL does not start with https, do not provide your credit card information. You are having lunch at a local restaurant outside the installation, and you find a cd labeled favorite song. What level of damage to national security could reasonably be expected if unauthorized disclosure of Top Secret information occurred? Malicious code can mask itself as a harmless e-mail attachment, downloadable file, or website. You must have your organization's permission to telework c. You may use unauthorized software as long as your computer's antivirus software is up to date. What can help to protect the data on your personal mobile device. 1).Compared with CK, straw addition treatments (S and SG) significantly (P < 0.01) increased the emission rate and cumulative emission of CO 2 and the cumulative CO 2 . 1.To provide opportunities for individuals and businesses to open checking accounts __________, To write rules and guidelines for financial institutions under its supervision __________, To be the lender of last resort for financial institutions __________, To conduct the nations monetary policy with the goals of maintaining full employment and price stability __________, 5. Which of the following is true of Sensitive Compartmented Information (SCI)? Always check to make sure you are using the correct network for the level of data. Quizzma is a free online database of educational quizzes and test answers.