SFPC Information Security Question and answers 100% correct 2023

SFPC Information Security Question and answers 100% correct 2023Critical program information includes both classified military information and controlled unclassified information: True Critical program information needs to be protected from unauthorized or inadvertent destruction, transfer, alteration, or loss: True Compromise of critical program information can significantly alter program direction, shorten combat effective life of the system, or require additional research, development, test, and evaluation resources to counter impact of its loss: True SCGs address the possibility that the compilation and aggregation of the COP may reveal classified information: True The organizational or command security manager is responsible for developing, approving, and implementing the Program Protection Plan- a single source document that specifies all protection efforts designed to deny unauthorized access to critical program information: False The preparation and implementation of a Program Protection Plan is based on effective application of risk avoidance methodology: False The Program Protection Plan needs to be classified according to its content: True Two security professionals (Jo and Chris) are discussing the policy documents associated with information classification -Jo says that EO 13526 calls for basic classification policy that advocates classifying information only when necessary to prevent damage to US national security and only for as long as necessary, but not for longer than 15 years -Chris says that DoD 5200.2R is the policy document that established the baseline information security requirements for the DoD Who is correct? Both are incorrect Two security professionals (Jo and Chris) are discussing the topic of classifying information -Jo says that information eligible for classification is owned by, produced for, or is under the strict control of the government Chris says that the three classification levels differ in the extent of damage one can expect from the unauthorized disclosure of the designated information Who is correct? Both correct Two security professionals (Jo and Chris) are discussing the topic of classifying information -Jo says that information can be classified to prevent or delay public release -Chris says that information ineligible for classification can still be classified if there is a need to limit dissemination of the information Who is correct? Both are incorrect Two security professionals (Jo and Chris) are discussing the topic of original classification -Jo says that original classification refers to the initial determination that information requires protection against unauthorized disclosure in the interest of US national security -Chris says that original classification entails the use of a 6 step process that results in the information custodian making a classification determination Who is correct? Jo is correct Original classification authority is delegated to occupants of a position: True Delegation of the original classification authority (OCA) needs to specify the lowest level the OCA can classify a piece of information: False An OCA cannot issue a SCG until approved by the Information Security Oversight Office (ISOO): False