Questions Flashcards
Who is phia’s FSO (Facility Security Officer)?
Justin Hoeckle
Who is phia’s ITPSO (Insider Threat Program Senior Official)?
Kirat Fowler
Does Phia have a Security SPP (Standard Practice Procedures) and ITP (Insider Threat Plan)?
Yes and Yes
What topics do you recall from initial security briefing?
Counterintelligence
Insider Threat Awareness
Security Classification and Safeguarding
What is classified information?
Impacts National Security, Defense, or Foreign relations
How would you know if a document was classified?
Documents are marked with appropriate classification level and also have classification coversheets.
Who has access to classified information?
Personnel with the requisite clearance and a need to know.
What is the difference between a U.S. Government Security Clearance and a U.S Government Public Trust
A Security Clearance determines an individual’s eligibility to view classified information; whereas a public trust does NOT allow access to classified information.
If you found unprotected classified information, what would you do?
Take immediate steps to protect it, by placing it in an approved classified storage container, and immediately contacting the on-site security officer.
What are the security procedures for publishing classified material?
Don’t do it! Classified may only be published through secure government channels after appropriate reviews and approvals.
What is Controlled Unclassified Information (CUI)?
Government created or owned information requiring safeguarding and dissemination commensurate with applicable laws, regulations and government policies.
Why is CUI important?
Handling and Dissemination of unclassifiied, but sensitive information.
What are some examples of CUI, as it relates to your position.
Unclassified Controlled Technical Information (UCTI)
For Official Use Only (FOUO)
Data sets and analyses
What is a security violation?
A security incident that DID results in the loss or compromise of classified information.
What is a security infraction?
A security incident that COULD compromise of classified information.
What would you do if you committed a security violation, infraction, or discovered one?
Immediately report to phia’s FSO and the onsite Government security officer.
What is SEAD 3?
Reporting Requirements for classified information.
What is adverse information?
Anything that might compromise one’s ability to safeguard classified information.
How would you adverse information?
You would report all adverse information, about yourself or any other individual, directly to the phia FSO.
What is “suspicious contact”?
Any efforts by any individual to obtain illegal or unauthorized access to classified or sensitive information or to compromise an individual.
How would you suspicious contact?
You would report all adverse information, about yourself or any other individual, directly to the phia FSO.
Can you recall any other reportable items?
Unsanctioned Foreign Travel
Unexplained Afflluence
Insider Threat Indicators
What is an insider threat?
The potential for an insider to use their authorized access or understanding of an organization to harm that organization.
Who would you report insider threat indicators or behaviors to?
You would report any Insider Threat indicators or behaviors, about any individual cleared or uncleared to the phia FSO.
Can you recall any methods used to recruit trusted insiders?
Direct Contact
Elicitation
Exploitation
What are some indicators of insider threat behavior?
Attempted privledge escalation
Unexplained affluence
Disgrunted employee
