CUI
What does CUI stand for?
Controlled Unclassified Information
*32 CFR 2002.20 CUI Marking Policy*
How do you report your foreign travel notification and debrief?
On a form submitted through the ticket system
*Section 2: Policy Statement*
Can oral discussion be considered classified?
Yes, and classified discussions should only take place in the Closed Room
*Section 10.2: Oral Discussions*
You can repost, like, subscribe to BC's social media posts
True; share the BC love <3
*Slack*
Why do we have a Security Awareness Week?
To promote understanding and awareness. BC stores and processes classified data and knowing how to properly protect it is imperative.
*Annual Refresher Training*
What is the need-to-know principle?
To only share the information when two conditions are met:
•Appropriate clearance level
•The requester needs to know the information to perform their job functions
*Annual Refresher Training*
How many days in advance does your foreign travel need to be reported?
At least 30 days prior to your departure
*Section 2: Policy Statement*
Will security recommend termination if you get four security infractions/violations in a year?
Yes (all situations are reviewed on a case by case basis)
*Section 7: Graduated Scale of Disciplinary Actions*
Purchasing and using cannabis or hemp products can put my clearance in jeopardy
True; all employees signed a Drug Free Workplace Policy when starting with Beast Code as well
*Drug Free Workplace Policy*
Up to what level of classification is Beast Code allowed to process/possess?
SECRET
*SPP, Facility Clearance Level*
Where can you find the different CUI categories?
CUI Registry
When do you report a cruise as foreign travel?
When it is an open loop cruise i.e.
- Not staying on the ship every night and staying at a hotel/resort in a foreign country
- Flying into an international country to depart from an international port
- Departing from a US port, but returning to an international port and flying out of an international airport
*Section 3: Exceptions*
T/F: Classified information displayed in public is automatically considered unclassified
False
*Section 11: Public Release/Disclosure*
You can disregard your CAC reverification emails
True; your FSO, GMs and PMs work together to get your reverifications done
*Slack*
How many days in advance does Security need to be notified before a foreign national visits HQ for non-business reasons?
At least 3
*New Comers Brief*
How do you share CUI information with outside organizations?
DOD Safe or sharing encryption certs with them
*Instructions found on Security and IT/Cyber SharePoint and Slack*
What travel DOES NOT need to be reported?
Any travel within the 50 states, Puerto Rico, Guam and other US territories
*Section 3: Exceptions*
What adverse information are you supposed to report?
espionage, sabotage, suspicious contacts, adverse information, change in name, change in citizenship, criminal convictions, unexplained wealth
*Section 6.3: Adverse Information*
Beast Code does Derivative Classification and does not Originally Mark classified material
True
*SPP, Section 9.2: Original Classification and Section 9.3: Derivative Classification*
What are some good OPSEC practices?
Removing badge after leaving the facility
Not posting personal or sensitive information
Reporting suspicious activity
Being aware of your surroundings
How many CUI categories are there?
100+
*CUI Registry*
What document is the BC Foreign Travel Policy derived from?
Security Executive Agent Directive 3 (SEAD 3)
*Section 1: Reason for Policy*
What is the SPP governed by?
The National Industrial Security Program Operating Manual
*Section 1: Introduction*
All daily Security things can be found in bc-security, SharePoint or in the Ticket system
95% True; a few things like specific questions will require a DM or email
Where can you report fraud, waste, abuse, and infractions concerning contracts if you don't feel comfortable reporting it to the FSOs?
Defense Hotline
- Address: The Pentagon Defense Hotline Washington, DC 20301-1900
- Phone Number: 800-424-1900
*Last slide of basically every security brief*