![]() Just because people in your office are vetted, doesn’t mean they necessarily have a need to know.” It’s imperative that you know your surroundings. “That means thinking about what you say, before you say it. “We have a thing called ‘safe speak,’ Krause said. Volunteers, visitors and personnel without security clearances, often walk through office spaces, so employees must be aware of their surroundings at all times. Moore added that APG personnel should not discuss sensitive information in open environments, including cubicles. He added that employees should close their doors when they leave their offices. Krause added that employees need to ensure they are shredding FOUO documents and classified information with government approved shredders. “That’s complacency, if you only plan for known variables,” she said. She said employees shouldn’t wait until a planned inspection to clean their desk. Moore said displaying FOUO documents in an open area is a security violation, and it can impact the installation’s CCRI score significantly. ![]() “Not everyone needs to see these documents.” “One of the biggest issues with complacency, is that you forget that it is your work, not other people’s work,” she said. Maps, contact rosters, memos, work schedules are examples of common FOUO documents. FOUO documents should be secured when they are not being used, Moore said. Documents that are marked For Official Use Only, or FOUO, should never be displayed in a cubicle. ![]() Information technology specialist Cynthia Moore, with the Mid-Atlantic Region NEC, said APG personnel should maintain a clean desk at all times. Users, he said, should remain vigilant at all times. Traditional Security Information Technology Specialist Michael Curry, of the Mid-Atlantic Region NEC, said leading up to the CCRI, the Mid-Atlantic Region NEC will conduct no-notice inspections everyday. “Security needs to be everyone’s concern, at some level,” he said. Physical Security Specialist George Krause, with the Mid-Atlantic Region Network Enterprise Center, said the APG workforce is reminded to implement security measures everyday, not just during the CCRI. 13 to 24.ĬCRIs are conducted on federal installations to measure cybersecurity readiness of Department of Defense Information Network, or DODIN. The Defense Information Systems Agency is scheduled to conduct APG’s Command Cyber Readiness Inspection, or CCRI, next month, Aug.
0 Comments
Leave a Reply. |