WGU CYBERSECURITY RISK MANAGEMENT 43
QUESTIONS WITH VERIFIED ANSWERS 2025/2026
Reputational, Operational, Legal - CORRECT ANSWER What are the three financial
impacts of a cybersecurity breach?
judgment, risk tolerance - CORRECT ANSWER Effective cybersecurity management
requires __________ based upon the _____ ___________ of the organization.
To make the effort of actually accomplishing a compromise more costly in time
and effort than it is worth to a potential attacker - CORRECT ANSWER What is the
goal of cybersecurity?
Reducing risk to an acceptable level - CORRECT ANSWER What is the goal of
effective security management?
Management - CORRECT ANSWER Who is ultimately in charge of information
security?
No, it has members from different functional areas - CORRECT ANSWER Is a
cybersecurity team made up of just IT people?
Protection = Prevention + (Detection + Response) - CORRECT ANSWER What is the
equation in the operational model of security?
, Access Control, Firewalls, Encryption, OS Hardening - CORRECT ANSWER What
elements are a part of prevention?
Audit Logs, IDS, Honeypots - CORRECT ANSWER Detection
Backups, Incident Response teams, computer forensics - CORRECT ANSWER
Response
confidentiality - CORRECT ANSWER What does the trusted computer system
evaluation criteria (TCSEC) evaluate?
An international standard that provides a common structure and language -
CORRECT ANSWER What is Common Criteria (CC)?
National Institute of Standards and Technology - CORRECT ANSWER What does
NIST stand for?
Security responsibility should be assigned to an individual or entity with proper
authority, visibility, and expertise - CORRECT ANSWER Unanimous Core Security
Practices: Security Responsibility
The management needs to understand the risk to its information assets and then
have an approach for addressing those risks - CORRECT ANSWER Unanimous Core
Security Practices: Risk Management
QUESTIONS WITH VERIFIED ANSWERS 2025/2026
Reputational, Operational, Legal - CORRECT ANSWER What are the three financial
impacts of a cybersecurity breach?
judgment, risk tolerance - CORRECT ANSWER Effective cybersecurity management
requires __________ based upon the _____ ___________ of the organization.
To make the effort of actually accomplishing a compromise more costly in time
and effort than it is worth to a potential attacker - CORRECT ANSWER What is the
goal of cybersecurity?
Reducing risk to an acceptable level - CORRECT ANSWER What is the goal of
effective security management?
Management - CORRECT ANSWER Who is ultimately in charge of information
security?
No, it has members from different functional areas - CORRECT ANSWER Is a
cybersecurity team made up of just IT people?
Protection = Prevention + (Detection + Response) - CORRECT ANSWER What is the
equation in the operational model of security?
, Access Control, Firewalls, Encryption, OS Hardening - CORRECT ANSWER What
elements are a part of prevention?
Audit Logs, IDS, Honeypots - CORRECT ANSWER Detection
Backups, Incident Response teams, computer forensics - CORRECT ANSWER
Response
confidentiality - CORRECT ANSWER What does the trusted computer system
evaluation criteria (TCSEC) evaluate?
An international standard that provides a common structure and language -
CORRECT ANSWER What is Common Criteria (CC)?
National Institute of Standards and Technology - CORRECT ANSWER What does
NIST stand for?
Security responsibility should be assigned to an individual or entity with proper
authority, visibility, and expertise - CORRECT ANSWER Unanimous Core Security
Practices: Security Responsibility
The management needs to understand the risk to its information assets and then
have an approach for addressing those risks - CORRECT ANSWER Unanimous Core
Security Practices: Risk Management
