Disclosure Exam 2026/2027: 95 Practice
Questions with Answers for DoD Personnel,
Contractors & Security Professionals
Description:
Master information security classification, CUI handling, whistleblower protections, and
unauthorized disclosure prevention with this comprehensive 2026/2027 practice exam.
Features 95 expert-verified questions with detailed explanations covering DoD regulations,
Executive Orders, and real-world security scenarios. Essential study resource for security
clearances, annual training, and professional certification.
Download now to ensure exam success in 2026/2027!
, Information Security Exam 2026/2027
Section 1: Fundamental Concepts of Classified Information
Question 1
Which of the following best describes the unauthorized disclosure of classified information or
controlled unclassified information (CUI)?
A. The intentional destruction of classified documents without proper authorization
B. The communication or physical transfer of classified information or CUI to an unauthorized
recipient
C. The storage of classified information in an approved security container
D. The discussion of classified information in a secure facility
Answer: B
Explanation: Unauthorized disclosure is specifically defined as the communication or physical
transfer of classified information or controlled unclassified information (CUI) to an unauthorized
recipient. This definition encompasses both verbal and physical transmission of protected
information to individuals who lack the appropriate clearance or need-to-know.
Question 2
What is the duration of applicability for a Non-Disclosure Agreement (NDA) signed by an
individual with access to classified information?
A. Five years from the date of signature
B. Ten years from the date of separation from employment
C. For a lifetime
D. Until the information becomes declassified
Answer: C
Explanation: Non-Disclosure Agreements (NDAs) executed by individuals with access to
classified information remain applicable for the lifetime of the signatory. This perpetual
obligation reflects the enduring nature of national security requirements and the continuous need
to protect classified information regardless of employment status.
,Question 3
Which statement accurately describes the status of classified information or controlled
unclassified information (CUI) that appears in the public domain?
A. The information is automatically declassified and may be freely shared
B. The information is no longer subject to protection requirements
C. The information is still classified or designated as CUI
D. The information becomes unclassified but remains controlled
Answer: C
Explanation: Information appearing in the public domain does not lose its classification or CUI
designation. The unauthorized appearance of classified or CUI in public sources does not negate
the requirement to protect such information. Personnel must continue to treat the information
according to its original classification or designation.
Section 2: Types of Unauthorized Disclosure
Question 4
An individual with access to classified information sends a classified email across a network that
is not authorized to process classified information. This scenario represents which type of
unauthorized disclosure?
A. Espionage
B. Data Spill
C. Improper Safeguarding
D. Whistleblowing
Answer: B
Explanation: A data spill occurs when classified information or CUI is transferred onto an
information system that is not authorized at the appropriate security level, lacks required
protection, or does not have adequate access controls. The transmission of classified information
over an unauthorized network constitutes a data spill, regardless of intent.
, Question 5
An individual with access to classified information sells classified information to a foreign
intelligence entity. This is an example of which type of unauthorized disclosure?
A. Data Spill
B. Whistleblowing
C. Espionage
D. Inadvertent Disclosure
Answer: C
Explanation: Espionage involves the willful transmission of classified information to a foreign
government or intelligence entity, often for financial gain or other personal benefit. This
represents one of the most serious forms of unauthorized disclosure and carries severe legal
consequences under the Espionage Act.
Question 6
If classified information or controlled unclassified information (CUI) is in the public domain,
how should it be treated?
A. It may be freely shared with anyone
B. It is automatically declassified
C. The information is still classified or designated as CUI
D. It becomes unclassified but remains sensitive
Answer: C
Explanation: The presence of classified or CUI in the public domain does not eliminate the
requirement to protect such information. Personnel must continue to recognize and safeguard
information according to its original classification or designation, even if it has been publicly
exposed through unauthorized means.