DODI 8500.01, CYBER SECRITY

Question 1

Which instruction established a DoD cyber security program to protect and defend DoD information and information technology?

Answer 1

DoDI 8500.01

Question 2

What will be employed to protect, detect, characterize, and mitigate unauthorized activity and vulnerabilities on DoD information networks?

Answer 2

Cyberspace Defense

Question 3

What must be given to all DoD information in electronic format in the appropriate levels that reflects the importance of both information sharing and protection?

Answer 3

Confidentiality, Integrity and Availability

Question 4

What must be used to ensure strong identification, authentication, and eliminate anonymity in DoD IS and PIT systems?

Answer 4

Identity Assurance

Question 5

Which instruction must the DoD-wide Public Key Infrastructure (PKI) solution be managed in accordance with?

Answer 5

DoDI 8520.02

Question 6

Which instruction must the biometrics that are used in support of identity assurance be managed in accordance with?

Answer 6

DoDD 8521.01

Question 7

Who is responsible for the monitoring, evaluation, and providing the advice to the Secretary of Defense regarding all DoD cyber security activities and oversee implementation of DoDI 8500.01?

Answer 7

DoD CIO (Pages 14)

Question 8

Who does the DoD CIO coordinate with to ensure that cyber security policies and capabilities are aligned with and mutually supportive of personnel. physical, industrial, information and operations security and capabilities?

Answer 8

Under Secretary of Defense for Intelligence (USD(I))

Question 9

Who does the DoD CIO coordinate with in development of cybersecurity-related standards and guidance?

Answer 9

NIST

Question 10

Who does the DoD CIO coordinate with to ensure that cybersecurity responsibilities are integrated into processes for DoD acquisition programs, including research and development?

Answer 10

USD(AT&L)

Question 11

What does the DoD CIO appoint for DoD ISs and PIT systems governed by the Enterprise Information Mission Area (MA) (EIEMA)?

Answer 11

PAO

Question 12

In what grade or the civilian employee equivalent must the candidate be to be appointed as the Defense IA Security Accreditation Working Group (DSAWG) Chair by the DoD CIO?

Answer 12

0-6

Question 13

How often must the DoD CIO conduct an assessment of the DoD Component cybersecurity program?

Answer 13

Annually

Question 14

Who develops or acquires solution that support cybersecurity objectives for use throughout the DoD via the ESSG process?

Answer 14

DISA Director

Question 15

In accordance with which instruction does the DISA Director ensure the continued development and maintenance of the standards procedures to catalog, regulate, and control the use and management of Internet protocols, data services, and associated ports an DoD networks?

Answer 15

DoD Instruction 8551.1

Question 16

In accordance with which publication does the DlSA Director develop and provide cybersecurity training and awareness products as well as a distributive training capability to support the DoD Components?

Answer 16

DoD Directive 8570.01

Question 17

Who does the DlSA Director coordinate with to ensure that command cyber readiness inspection guidance and metrics provide a unity effort among the security disciplines?

Answer 17

USD(I)

Question 18

Who assists with acquisition related agreements, and international cybersecurity and cyberspace defense negotiations and agreements?

Answer 18

USD(AT&L)

Question 19

The USD(AT&L) must ensure that PIT systems included in acquisition programs are designated, categorized‘ and have their authorization boundaries defined according to the guidelines that are provided in which reference?

Answer 19

DoD Instruction 8510.01

Question 20

Who exercises oversight responsibility for developmental test planning in support of interoperability and cybersecurity programs acquiring DoD is and PIT systems in accordance with DoDl 5134.17?

Answer 20

DASD(DT& E)

Question 21

Who coordinates with the DoD ClO to ensure cybersecurity strategies, policies, and capabilities are aligned with overarching DoD cyberspace policy. and are supportive of policies and capabilities relating to the disclosure of classified military information to foreign governments and international organizations in accordance with DoD Directive 8000.0l

Answer 21

USD(P)

Question 22

Who supports implementation of cybersecurity requirements for effective manning, management, and readiness assessments of the cybersecurity workforce in accordance with DoD Directive 8570.01 and DoD 8570.01-M?

Answer 22

USD(P&R)

Question 23

Who evaluates or validates security implementation specifications described in DoDl 8500.01?

Answer 23

DIRNSA/CHCSS

Question 24

Who develops, implements, and manages the cybersecurity program for DoD non cryptographic SCI systems, including the DoD intelligence (DoDIIS) and JWlCS?

Answer 24

Director, DIA

Question 25

Who appoints the PAO for DoD IS and PIT systems governed by the Business Mission Area (BMA)?

Answer 25

Deputy Chief Management Officer (DCMO)

Question 26

Cybersecurity training and awareness products developed by what will be used to meet the baseline user awareness training that is required by BOB Directive 857001?

Answer 26

DISA

Question 27

Which program ensures that IT can be used in a way that allows mission owners and operators to have confidence in the confidentiality, integrity, and availability of IT and DoD information, and to make choices based on that confidence?

Answer 27

Defense cybersecurity

Question 28

What is used by the DoD to address risk management for all DoD ISs and PIT systems?

Answer 28

NIST SP 800-37

Question 29

From which perspective does tier one risk management address risk?

Answer 29

Organizational

Question 30

What provides the Tier I risk management governance for the DoD?

Answer 30

DoD ISRMC

Question 31

Which risk management tier addresses risk from a mission and business process perspective?

Answer 31

Tier 2

Question 32

Which risk management tier addresses risk from an IS and PlT system perspective?

Answer 32

Tier 3

Question 33

Cybersecurity risk management is planned for and documented in a cybersecurity strategy in accordance with Interim DoD Instruction 5000.02 along with which other reference?

Answer 33

DoD Instruction 8580.1

Question 34

What provides a disciplined and structured process that combines is security and risk management activities into the system development life cycle and authorizes their use within the DoD?

Answer 34

Risk Management Framework (RMF)

Question 35

How many steps does the Risk Management Framework (RMF) have?

Answer 35

6

Question 36

The reciprocal acceptance of DoD and other federal agency and department security authorizations will be implemented in accordance with procedures in which reference?

Answer 36

DoD Instruction 8510.01

Question 37

How many conditions must be met for operational resilience?

Answer 37

3

Question 38

Transmission of DoD information must be protected through the communications security (COMSEC) measures and procedures established in which reference?

Answer 38

DoDI 8523.01

Question 39

COMSEC monitoring and cybersecurity readiness testing will be conducted in accordance with which reference?

Answer 39

DOD Instruction 8560.01

Question 40

Which type of model provides people, Services, and platforms the ability to discover one another and connect to form new capabilities or teams without being constrained by geographic, organizational, or technical barriers?

Answer 40

Net centric

Question 41

What coordinates and facilitates relationships across LE, intelligence, and homeland security communities?

Answer 41

DoD Cyber Crime Center

Question 42

What is used to ensure strong identification and authentication as well as eliminates anonymity in DoD lSs so that entities’ access and access behavior are visible, traceable, and enable continuous monitoring for LE and cybersecurity?

Answer 42

Identity assurance

Question 43

Which instruction contains identity assurance policies and procedures regarding identity authentication for 185?

Answer 43

DoD Instruction 8520.03

Question 44

What provide standard cybersecurity, such as boundary defense, incident detection, and response, and key management as well as delivering common applications such as office automation and e-mail?

Answer 44

Enclaves

Question 45

Where must all DoD ISs be registered on the low side?

Answer 45

DITPR

Question 46

Which reference should be consulted for PIT cybersecurity requirements?

Answer 46

DoD Instruction 8510.01

Question 47

Which DoD level must all PIT systems be registered?

Answer 47

Component

Question 48

What consists of IT capabilities that are provided according to a formal agreement between DoD entities or between DoD and an entity external to DoD?

Answer 48

IT Service

Question 49

Unified capability products will receive unified capability certification for cybersecurity in accordance with which reference?

Answer 49

DoD Instruction 8100.04

Question 50

All acquisitions of DoD [S will comply with USD(AT&L) Memorandum along with which other reference?

Answer 50

DoD Instruction 8580.1

Question 51

Which reference will ports, protocols, and services be managed in accordance with?

Answer 51

DoD Instruction 8551.1

Question 52

Who is responsible for configuring and reviewing the security for IT below the system level for acceptance and connection into an authorized computing environment

Answer 52

ISSM

Question 53

Who will oversee the development and acquisition of enterprise solutions for use throughout the DoD that support cybersecurity objectives?

Answer 53

ESSG

Question 54

Which TPM version or higher if required by DISA STle must DoD components ensure that new computer assets procured to support DoD meet?

Answer 54

1.2

Question 55

Which standards will be used by STIGs developed by DISA?

Answer 55

SCAP

Question 56

Who ensures that DoD IT is assigned to and governed by a DoD Component cybersecurity program?

Answer 56

DoD SISO

Question 57

Who performs the DoD risk executive function?

Answer 57

DOD ISRMC

Question 58

Who are responsible for overseeing and establishing guidance for the strategic implementation of cybersecurity and risk management within their MAs?

Answer 58

PAOs

Question 59

Who are responsible for developing and maintaining an organizational or system level cybersecurity program

Answer 59

ISSMs

Question 60

In accordance with which reference must ISSMs ensure that the handling ofpossible or actual data spills of classified information are handled with?

Answer 60

DOD Manual 5200.01

Question 61

Who is responsible for implementing and enforcing all DoD IS and PIT system cybersecurity policies and procedures as defined by cybersecurity related documentation?

Answer 61

ISSO

Question 62

Authorized users must meet the minimum cybersecurity awareness requirements in accordance with which reference?

Answer 62

DoD 8570.01-M

Question 63

Who render authorization decisions for DoD ISs and PIT systems under their purview in accordance with DoD Instruction 8510.01?

Answer 63

AOs