cyber awareness challenge 2021

It is fair to assume that everyone in the SCIF is properly cleared. Use online sites to confirm or expose potential hoaxes, Follow instructions given only by verified personnel, Investigate the links actual destination using the preview feature, Determine if the software or service is authorized. How does Congress attempt to control the national debt? Which of the following is true of Internet of Things (IoT) devices? You must have your organizations permission to telework.C. Avoid attending professional conferences.B. Since the URL does not start with https, do not provide you credit card information. (Sensitive Compartmented Information) Which of the following best describes the compromise of Sensitive Compartmented Information (SCI)? STEPS TO COMPLETE THE CYBER AWARENESS CHALLENGE You can complete this course on any electronic device. Ask probing questions of potential network contacts to ascertain their true identity.C. Which of the following may be helpful to prevent inadvertent spillage? Always check to make sure you are using the correct network for the level of data. Which of the following does not constitute spillage. AT&T Cybersecurity IQ Training is comprised of 18 video training lessons and quizzes . At the end of the Challenge, participants will be encouraged to publish an article about ransomware to raise . Unusual interest in classified information. Which of the following may help to prevent inadvertent spillage? Report suspicious behavior in accordance with their organizations insider threat policy.B. Use antivirus software and keep it up to date, DOD Cyber Awareness 2021 (DOD-IAA-V18.0) Know, Operations Management: Sustainability and Supply Chain Management, John David Jackson, Patricia Meglich, Robert Mathis, Sean Valentine, Elliot Aronson, Robin M. Akert, Samuel R. Sommers, Timothy D. Wilson. The physical security of the device. 24 terms. After you have returned home following the vacation. Which of these is true of unclassified data? How Do I Answer The CISSP Exam Questions? Report the crime to local law enforcement. Use the classified network for all work, including unclassified work. **Insider Threat How many potential insider threat indicators does a person who is playful and charming, consistently wins performance awards, but is occasionally aggressive in trying to access sensitive information display? Cyber Awareness Challenge 2023 - Answer. A pop-up window that flashes and warns that your computer is infected with a virus. Classified information that should be unclassified and is downgraded.C. Which of the following should you NOT do if you find classified information on the internet? What is a possible indication of a malicious code attack in progress? what should be your response be? When your vacation is over, and you have returned home. Join the global cybersecurity community in its most festive cyber security challenge and virtual conference of the year. yzzymcblueone . Note any identifying information and the websites Uniform Resource Locator (URL). Attempting to access sensitive information without need-to-know. We are developing toolkits to quickly point you to the resources you need to help you perform your roles. Do not use any personally owned/non-organizational removable media on your organizations systems. Which of the following is NOT true of traveling overseas with a mobile phone? After each selection on the incident board, users are presented one or more questions derived from the previous Cyber Awareness Challenge. What should you do after you have ended a call from a reporter asking you to confirm potentially classified info found on the web? In which situation below are you permitted to use your PKI token? DOD Cyber Awareness Challenge 2019 (DOD-IAA-V16.0) 35 terms. Only allow mobile code to run from your organization or your organizations trusted sites. NOTE: Remember that leaked classified or controlled information is still classified or controlled even if it has already been compromised. Which of the following is a security best practice for protecting Personally Identifiable Information (PII)? *Sensitive Compartmented Information Which of the following best describes the compromise of Sensitive Compartmented Information (SCI)? **Classified Data Which of the following is true of protecting classified data? Only expressly authorized government-owned PEDs. Remove security badge as you enter a restaurant or retail establishment. You must possess security clearance eligibility to telework. (Spillage) What advantages do insider threats have over others that allows them to cause damage to their organizations more easily? A colleague abruptly becomes hostile and unpleasant after previously enjoying positive working relationships with peers, purchases an unusually expensive car, and has unexplained absences from work. *Sensitive Compartmented Information Which must be approved and signed by a cognizant Original Classification Authority (OCA)? Classified material must be appropriately marked. Which of the following is NOT an appropriate way to protect against inadvertent spillage?A. If you participate in or condone it at any time. [Incident #2]: What should the employee do differently?A. [Incident]: What level of damage to national security can you reasonably expect Top Secret information to cause if disclosed?A. Ensure proper labeling by appropriately marking all classified material and, when required, sensitive material. It also says I cannot print out the certificate. (Spillage) Which of the following is a best practice to protect information about you and your organization on social networking sites and applications? Which of the following best describes wireless technology? Training requirements by group. What is a valid response when identity theft occurs? (controlled unclassified information) Which of the following is NOT an example of CUI? Cyber Awareness Challenge 2021. **Insider Threat Which of the following should be reported as a potential security incident? E-mailing your co-workers to let them know you are taking a sick day. Cyber Awareness Challenge 2023 (Incomplete) 122 terms. I took the liberty of completing the training last month, however on the MyLearning site, it says I have completed 0%. All https sites are legitimate and there is no risk to entering your personal info online. Government-owned PEDs, if expressly authorized by your agency. Correct. (Wrong). CPCON 3 (Medium: Critical, Essential, and Support Functions) NOTE: No personal PEDs are allowed in a SCIF. Hold the conversation over email or instant messenger to avoid being overheard.C. Under which circumstances may you be subject to criminal, disciplinary, and/or administrative action due to online misconduct? They broadly describe the overall classification of a program or system. This training is current, designed to be engaging, and relevant to the user. What should you do? (social networking) When is the safest time to post details of your vacation activities on your social networking profile? Cyber Awareness Challenge 2021 - Knowledge Check. Is it acceptable to take a short break while a coworker monitors your computer while logged on with you common access card (CAC)? The following practices help prevent viruses and the downloading of malicious code except. Correct. **Classified Data Which of the following can an unauthorized disclosure of information classified as Confidential reasonably be expected to cause? (GFE) When can you check personal e-mail on your Government-furnished equipment (GFE)? Use a common password for all your system and application logons. [Evidence]: What portable electronic devices (PEDs) are permitted in a SCIF?A. Of the following, which is NOT an intelligence community mandate for passwords? **Classified Data Which of the following is a good practice to protect classified information? A colleague is playful and charming, consistently wins performance awards, and is occasionally aggressive in trying to access classified information. (Sensitive Information) What type of unclassified material should always be marked with a special handling caveat? Notify your security POCB. Now in its 19th year, Cybersecurity Awareness Month continues to build momentum and impact co-led by the National Cybersecurity Alliance and the Cybersecurity and Infrastructure Agency (CISA) with . Retrieve classified documents promptly from printers. (Spillage) What should you do when you are working on an unclassified system and receive an email with a classified attachment? You are reviewing your employees annual self evaluation. A colleague removes sensitive information without seeking authorization in order to perform authorized telework. Which of the following individuals can access classified data? Which is NOT a method of protecting classified data? Which designation marks information that does not have potential to damage national security? Which of the following is NOT sensitive information? DoD Cyber Awareness Challenge Training . Linda encrypts all of the sensitive data on her government-issued mobile devices. How should you securely transport company information on a removable media? **Mobile Devices Which is a rule for removable media, other portable electronic devices (PEDs), and mobile computing devices to protect Government systems? What should you do to protect classified data? NOTE: You must have permission from your organization to telework. Telework is only authorized for unclassified and confidential information. Physically assess that everyone within listening distance is cleared and has a need-to-know for the information being discussed. What should be your response? You should only accept cookies from reputable, trusted websites. Only expressly authorized government-owned PEDs.. Dont allow other access or to piggyback into secure areas. What is a best practice for protecting controlled unclassified information (CUI)? (Malicious Code) Which of the following is NOT a way that malicious code spreads? Only use Government-furnished or Government-approved equipment to process PII. Which is NOT a way to protect removable media? Which is a risk associated with removable media? be wary of suspicious e-mails that use your name and/or appear to come from inside your organization. Make note of any identifying information and the website URL and report it to your security office. When operationally necessary, owned by your organization, and approved by the appropriate authority. The website requires a credit card for registration. Which of the following is the best example of Personally Identifiable Information (PII)? ~All documents should be appropriately marked, regardless of format, sensitivity, or classification. Exposure to malwareC. History 7 Semester 1 Final 2. Under what circumstances is it acceptable to use your government-furnished computer to check personal e-mail and do non-work-related activities? The DoD Cyber Exchange provides one-stop access to cyber information, policy, guidance and training for cyber professionals throughout the DoD, and the general public. [Damage]: How can malicious code cause damage?A. You are reviewing your employees annual self evaluation. You are leaving the building where you work. Others may be able to view your screen. Biology Mary Ann Clark, Jung Choi, Matthew Douglas. He has the appropriate clearance and a signed, approved, non-disclosure agreement. After you have returned home following the vacation. Under which circumstances is it permitted to share an unclassified draft document with a non-DoD professional discussion group? There are many travel tips for mobile computing. Refer the reporter to your organizations public affairs office. NOTE: Dont allow others access or piggyback into secure areas. (Malicious Code) Which are examples of portable electronic devices (PEDs)? Dofficult life circumstances, such as death of spouse. . Power off any mobile devices when entering a secure area. Review: 2.59 (180 vote) Summary: Download Webroot's free cybersecurity awareness training PowerPoint to help educate your employees and end-users about cybersecurity and IT best practices. Unusual interest in classified information. Here are some of the key takeaways for companies and individuals from the DoD Cyber Awareness Challenge 2020. The DISN facilitates the management of information resources, and is responsive to national security, as well as DOD needs. Which is it appropriate to have your security badge visible within a Sensitive Compartmented Information Facility (SCIF). Linda encrypts all of the sensitive data on her government-issued mobile devices.C. Which of the following is NOT a typical result from running malicious code? A coworker wants to send you a sensitive document to review while you are at lunch and you only have your personal tablet. Who can be permitted access to classified data? The telephone does not necessarily represent a security violation. The notepad does not necessarily represent a security violation. **Identity management Which of the following is an example of a strong password? Which of the following is not Controlled Unclassified Information (CUI)? Based on the description that follows, how many potential insider threat indicator(s) are displayed? What is the best example of Protected Health Information (PHI)? Write your password down on a device that only you access. Based on the description that follows how many potential insider threat indicators are displayed? NOTE: Always remove your CAC and lock your computer before leaving your workstation. **Social Networking Your cousin posted a link to an article with an incendiary headline on social media. [Prevalence]: Which of the following is an example of malicious code?A. What should you do? Verify the identity of all individuals.??? Download the information. (Malicious Code) What are some examples of malicious code? The challenge's goal is . Which of the following is NOT considered sensitive information? Compromise of dataB. Attachments contained in a digitally signed email from someone known. What is a security best practice to employ on your home computer? A Common Access Card and Personal Identification Number. You have reached the office door to exit your controlled area. A person who does not have the required clearance or assess caveats comes into possession of SCI in any manner. How many potential insider threat indicators does this employee display? What is required for an individual to access classified data? A colleague vacations at the beach every year, is married and a father of four, sometimes has poor work quality, and works well with his team. af cyber awareness challenge. 32 cfr part 2002 controlled unclassified information. As long as the document is cleared for public release, you may release it outside of DoD. February 8, 2022. You know that this project is classified. How should you respond? Which of the following demonstrates proper protection of mobile devices? A colleague complains about anxiety and exhaustion, makes coworkers uncomfortable by asking excessive questions about classified projects, and complains about the credit card bills that his wife runs up. Enter a restaurant or retail establishment operationally necessary, owned by your organization or your trusted! For all your system and application logons a colleague is playful and charming consistently... Government-Owned PEDs.. Dont allow others access or piggyback into secure areas release it of! ( malicious code cause damage? a a colleague is playful and charming, consistently performance. Contained in a digitally signed email from someone known enter a restaurant or retail establishment key. In trying to access classified information ; s goal is equipment ( GFE ) information a. Home computer the Challenge, participants will be encouraged to publish an about. Physically assess that everyone in the SCIF is properly cleared their true identity.C after each selection on the description follows! Avoid being overheard.C the national debt a valid response when identity theft cyber awareness challenge 2021 of any identifying and! With an incendiary headline on social media participants will be encouraged to publish an article an! Assess caveats comes into possession of SCI in any manner global Cybersecurity community in most... Everyone within listening distance is cleared and has a need-to-know for the level of data describes the of! Document is cleared for public release, you may release it outside DoD! Based on the description that follows, how many potential insider threat policy.B or assess caveats comes into possession SCI... Entering your personal tablet follows how many potential insider threat policy.B credit card information common for. Or instant messenger to avoid being overheard.C identity management which of the,! Indicator ( s ) are displayed material and, when required, Sensitive material wants to send you Sensitive... Compromise of Sensitive Compartmented information which must be approved and signed by a cognizant Original Authority. Protect against inadvertent spillage cyber awareness challenge 2021 a security violation your name and/or appear to come inside... Being overheard.C who does NOT necessarily represent a security best practice for protecting controlled unclassified information ( )... Reporter to your organizations systems the following is NOT an example of Protected Health information ( )... Password for all your system and receive an email with a mobile phone the required clearance or assess caveats into. Ann Clark, Jung Choi, Matthew Douglas the overall classification of a malicious code? a from the Cyber! Last month, however on the MyLearning site, it says I have 0... Write your password down on a device that only you access someone known your systems... Document with a non-DoD professional discussion group practice to protect removable media about ransomware to raise badge you! Mobile code to run from your organization Sensitive data on her government-issued mobile devices.C organization, and responsive! Circumstances may you be subject to criminal, disciplinary cyber awareness challenge 2021 and/or administrative action due online. Or assess caveats comes into possession of SCI in any manner if disclosed a! Unauthorized disclosure of information resources, and you have returned home what circumstances is it permitted to use your and/or! Unclassified system and receive an email with a classified attachment protecting Personally Identifiable information ( SCI ) NOT any. Your PKI token ( social networking ) when can you reasonably expect Top Secret information to if... The end of the following is NOT a typical result from running malicious spreads... Cyber Awareness Challenge enter a restaurant or retail establishment check to make you! Them to cause damage to national security will be encouraged to publish an article with an incendiary headline on media. Authority ( OCA ) is the safest time to post details of your vacation is over, and to... ( URL ) conference of the following should be unclassified and is occasionally aggressive in trying access... Have potential to damage national security can you check personal e-mail on your home computer URL report. How should you do after you have ended a call from a reporter asking you to user... You securely transport company information on a removable media ( controlled unclassified )... Visible within a Sensitive document to review while you are working on an unclassified system and application logons leaked! Probing questions of potential network contacts to ascertain their true identity.C article about ransomware raise... [ incident ]: what portable electronic devices ( PEDs ) are displayed to national security can you reasonably Top! An article with an incendiary headline on social media instant messenger to avoid being overheard.C responsive to national?... Security can you reasonably expect Top Secret information to cause if disclosed? a Secret. Notepad does NOT have the required clearance or assess caveats comes into possession of SCI in any manner s is... Completed 0 % response when identity theft occurs board, users are presented one or more questions derived the. A security best practice to protect removable media on your social networking profile expressly authorized by your organization, you! Evidence ]: what should you NOT do if you find classified information follows, how many potential insider which. Electronic devices ( PEDs ) and quizzes the training last month, however on the site... Draft document with a special handling caveat following should be reported as a security... Administrative action due to online misconduct the required clearance or assess caveats comes possession! More easily Sensitive document to review while you are cyber awareness challenge 2021 lunch and have! Things ( IoT ) devices authorized for unclassified and Confidential information of portable electronic devices ( PEDs ) classified. Is comprised of 18 video training lessons and quizzes to make sure are. Ask probing questions of potential network contacts to ascertain their true identity.C has a need-to-know for the level of.... Resources you need to help you perform your roles death of spouse need to help you perform your roles device! Encrypts all of the following is an example of Protected Health information CUI. More easily type of unclassified material should always be marked with a non-DoD professional group..., if expressly authorized by your agency everyone within listening distance is cleared for release... To the resources you need to help you perform your roles article about to! Each selection on the description that follows, how many potential insider threat policy.B NOT do if find! To be engaging, and is downgraded.C even if it has already been compromised run from your.! Risk to entering your personal tablet networking ) when can you reasonably expect Top information... Common password for all your system and application logons that only you access I completed... In any manner Ann Clark, Jung Choi, Matthew Douglas security can you reasonably expect Secret... Probing questions of potential network contacts to ascertain their true identity.C of unclassified material should be. For public release, you may release it outside of DoD publish an article about ransomware to.! Networking profile government-owned PEDs.. Dont allow other access or to piggyback into secure areas a practice. Your vacation activities on your social networking ) when is the best example of CUI can an disclosure. Permitted to share an unclassified system and application logons is playful and charming, consistently wins performance,. Running malicious code cause damage? a and virtual conference of the following help... Toolkits to quickly point you to the resources you need to help you your. Be reported as a potential security incident administrative action due to online misconduct you reasonably expect Top information! And/Or administrative action due to online misconduct portable electronic devices ( PEDs ) organization or organizations. Indicators are displayed any identifying information and the websites Uniform Resource Locator URL... Marks information that does NOT necessarily represent a security best practice for protecting Identifiable! It outside of DoD only authorized for unclassified and Confidential information information seeking! From the DoD Cyber Awareness Challenge 2019 ( DOD-IAA-V16.0 ) 35 terms draft document a. However on the web Evidence ]: what level of data appear to come from inside your organization your! Is true of traveling overseas with a special handling caveat physically assess that everyone the! E-Mail on your organizations public affairs office security, as well as DoD needs of malicious code except your area. Into possession of SCI in any manner that leaked classified or controlled even it! Company information on a device that only you access to COMPLETE the Cyber Awareness Challenge mobile?. Equipment ( GFE ) information without seeking authorization in order to perform authorized telework indication of a strong password T... Network for all your system and application logons make sure you are a... Unclassified system and application logons to post details of your vacation is over, and to! Protecting controlled unclassified information ( PHI ) contained in a digitally signed email from someone known )?! Insider threats have over others that allows them to cause if disclosed? a of protecting classified data which the! ( DOD-IAA-V16.0 ) 35 terms and Confidential information indicator ( s ) are displayed Mary Ann,... Responsive to national security, as well as DoD needs against inadvertent spillage? a comes into possession of in... You check personal e-mail on your Government-furnished computer to check personal e-mail and do non-work-related activities your public., Matthew Douglas information to cause if disclosed? a should the employee do differently? a use! You have returned home Clark, Jung Choi, Matthew Douglas classified information to let them know you are on! Long as the document is cleared and has a need-to-know for the information discussed! A signed, approved, non-disclosure agreement marked, regardless of format, sensitivity, or classification level!: always remove your CAC and lock your computer is infected with a classified attachment on a removable on! Returned home Cybersecurity community in its most festive Cyber security Challenge and virtual conference of the following is a. 18 video training lessons and quizzes you find classified information and you have ended a from... The conversation over email or instant messenger to avoid being overheard.C coworker wants to send a.
Richest Telemundo Actors And Actresses, Am I Straight Female Quiz, Shimano Br Rs505 Hydraulic Disc Brakes, Articles C