CJCSM 6510.01B, Encl. F & G

Question 1

What is the focal point for Net Defense threat data in the Department of Defense?

Answer 1

USCYBERCOM

Question 2

Which type of data consists of information that can help lead to increased defense of DoD information
networks and the attribution and intent of network intruder(s)?

Answer 2

Threat

Question 3

What employs intelligence, counterintelligence, law enforcement and other military capabilities to
defend DoD information and computer networks?

Answer 3

CND

Question 4

Where is the technical reporting between the incident handling program and intelligence maintained?

Answer 4

JIMS

Question 5

Which group consists of senior representatives from federal agencies that have roles and responsibilities
related to preventing, investigating, defending against, responding to, mitigating, and assisting in the recovery from cyber incidents and attacks?

Answer 5

Cyber Unified Coordination Group (CUCG)

Question 6

What is an interagency forum where organizations responsible for a range of activities (technical
response and recovery, LE, intelligence, and defensive measures) coordinate for the purpose of preparing
for and executing an efficient and effective response to an incident?

Answer 6

NCRCG

Question 7

What is the central repository for managing all reportable events and incidents in the Department of
Defense?

Answer 7

JIMS

Question 8

What is the system of record for the JLLP that provides a Web-enabled information management system
to meet operational needs for reporting lessons learned?

Answer 8

Joint Lessons Learned Information System (JLLIS)

Question 9

What is used by CND Analysts for collecting, processing, and storing the DoD networking sensing
environment information, facilitating execution of selected COAs to mitigate and respond to attacks
directed at DoD information networks?

Answer 9

Enterprise Sensor Grid (ESG)

Question 10

What is the functional owner of the JIMS and maintains and manages it?

Answer 10

USCYBERCOM

Question 11

What is the central repository for storing malware and associated analysis?

Answer 11

Joint Malware Catalog (JMC)

Question 12

What is the basis for the Department of Defense’s capability to rapidly analyze malicious code and
provide an accurate understanding of its behavior and capabilities?

Answer 12

Joint Malware Catalog (JMC)

Question 13

What is the functional owner of the JMC?

Answer 13

USCYBERCOM

Question 14

What is the primary CND intelligence analysis tool suite used to derive CND intelligence information?

Answer 14

JIMS

Question 15

Which list ensures critical DoD ISs are not affected inadvertently by responses to CND events?

Answer 15

DoD Protected Traffic List

Question 16

What are defined as groups of related incidents and associated data requiring centralized management
at the DoD level?

Answer 16

Incident Sets

Question 17

How many progressive readiness conditions are there in the CYBERCON system?

Answer 17

5

Question 18

12. Operations in support of CYBERCON implementation will be executed in accordance with which
    publication?

Answer 18

CJCSI 3121.01B