WGU D482 Exam 2025–2026 Accurate Real
Exam Questions and Verified Correct Answers
JUST RELEASED
What are two security controls that are applicable to the LAN-to-WAN domain? -
answer>>>Proxy server and Stateful packet inspection
A company's chief executive officer (CEO) is traveling overseas for a business meeting and
wants to
protect emails and video conference calls from a breach in confidentiality.
Which strategy should be used to achieve this objective? - answer>>>Secure a VPN back
into the corporate offices.
An enterprise environment has multiple stakeholders, each of whom has a unique role,
responsibility, and
level of access.
What is a cost-effective method of segmenting the network for this environment? -
answer>>>Create Virtual Local Area Networks (VLANs) to segment network traffic.
Match each network security strategy with the appropriate IT domain.
Answer options may be used more than once or not at all. Select your answers from the
pull-down list. - answer>>>Acceptable Use Policy (AUP)
signed prior to being granted
access to IT resources and
infrastructure : USER DOMAIN
Focused on training, strong
authentication, granular
authorization, and detailed
accounting (AAA) : USER DOMAIN
System hardening,
communication protection,
,and device positioning : WORKSTATION DOMAIN
Protocols, addressing,
topology, and
communication encryption
are critical to securing this
domain : LOCAL AREA NETWORK (LAN) DOMAIN
Secured via encrypted
tunnels for VPN
communication : REMOTE ACCESS DOMAIN
Which concept is appropriate for system hardening, given the workstation domain?
Choose 2 answers - answer>>>Synchronize the clock and Enable host firewall
A security administrator has discovered the following on a public website:
root:A4D7CF982CB1E5F83CB2FF4DACE8911E
user:A4D7CF982CB1E5F83CB2FF4DACE8911E
The security administrator is asked to mitigate the risks that these types of attacks expose
the company to
in the future.
What is an effective countermeasure that can be executed? - answer>>>Implement
tokens.
A device on a network is pinging over 100 endpoints on the infrastructure. The IP and
MAC addresses
belong to the network management system. However, the MAC address has been
spoofed. The machine is
tracked down, and it is an unknown rogue device that somehow got past the network
admission control
(NAC) device.
Which action should be taken from this point forward? - answer>>>Contain and unplug
this device from the network.
, A network has been subjected to a series of simple yet aggressive attacks for a number of
weeks. The
company's leadership and security team want to know the type of information the
attacker is searching
for, and the ways in which the attacker has been successful.
What are three methods that should be used to research the attacker's intentions and
capabilities?
Choose 3 answers - answer>>>Honeynet, Padded Cell, and Honeypot
An alarm has been triggered based on the Intrusion Detection System (IDS) thresholds on
a company's
main operational network. An immediate analysis of the IDS logs shows an intruder
successfully breached
the perimeter network defenses and began data exfiltration. Although the network
security administrator
managed to lock out the intruder and deny access from the source, the company must
now go into
"incident response" mode.
Which three goals should the administrator accomplish as quickly as possible? -
answer>>>Minimize operational and network downtime.
Restore the environment back to a secured normal state.
Minimize loss (e.g., financial, reputational, data, intellectual property).
An application server was recently attacked, resulting in compromise of all transactional
credit card
information via the website. It was revealed that the attacker was able to compromise a
system
administrator's computer via a spear phishing attack. This gave the attacker the ability to
compromise the
application server.
Which network security management practice should be applied to treat these
operational weaknesses? - answer>>>Increase training of information technology staff on
the dangers of social
engineering.
Exam Questions and Verified Correct Answers
JUST RELEASED
What are two security controls that are applicable to the LAN-to-WAN domain? -
answer>>>Proxy server and Stateful packet inspection
A company's chief executive officer (CEO) is traveling overseas for a business meeting and
wants to
protect emails and video conference calls from a breach in confidentiality.
Which strategy should be used to achieve this objective? - answer>>>Secure a VPN back
into the corporate offices.
An enterprise environment has multiple stakeholders, each of whom has a unique role,
responsibility, and
level of access.
What is a cost-effective method of segmenting the network for this environment? -
answer>>>Create Virtual Local Area Networks (VLANs) to segment network traffic.
Match each network security strategy with the appropriate IT domain.
Answer options may be used more than once or not at all. Select your answers from the
pull-down list. - answer>>>Acceptable Use Policy (AUP)
signed prior to being granted
access to IT resources and
infrastructure : USER DOMAIN
Focused on training, strong
authentication, granular
authorization, and detailed
accounting (AAA) : USER DOMAIN
System hardening,
communication protection,
,and device positioning : WORKSTATION DOMAIN
Protocols, addressing,
topology, and
communication encryption
are critical to securing this
domain : LOCAL AREA NETWORK (LAN) DOMAIN
Secured via encrypted
tunnels for VPN
communication : REMOTE ACCESS DOMAIN
Which concept is appropriate for system hardening, given the workstation domain?
Choose 2 answers - answer>>>Synchronize the clock and Enable host firewall
A security administrator has discovered the following on a public website:
root:A4D7CF982CB1E5F83CB2FF4DACE8911E
user:A4D7CF982CB1E5F83CB2FF4DACE8911E
The security administrator is asked to mitigate the risks that these types of attacks expose
the company to
in the future.
What is an effective countermeasure that can be executed? - answer>>>Implement
tokens.
A device on a network is pinging over 100 endpoints on the infrastructure. The IP and
MAC addresses
belong to the network management system. However, the MAC address has been
spoofed. The machine is
tracked down, and it is an unknown rogue device that somehow got past the network
admission control
(NAC) device.
Which action should be taken from this point forward? - answer>>>Contain and unplug
this device from the network.
, A network has been subjected to a series of simple yet aggressive attacks for a number of
weeks. The
company's leadership and security team want to know the type of information the
attacker is searching
for, and the ways in which the attacker has been successful.
What are three methods that should be used to research the attacker's intentions and
capabilities?
Choose 3 answers - answer>>>Honeynet, Padded Cell, and Honeypot
An alarm has been triggered based on the Intrusion Detection System (IDS) thresholds on
a company's
main operational network. An immediate analysis of the IDS logs shows an intruder
successfully breached
the perimeter network defenses and began data exfiltration. Although the network
security administrator
managed to lock out the intruder and deny access from the source, the company must
now go into
"incident response" mode.
Which three goals should the administrator accomplish as quickly as possible? -
answer>>>Minimize operational and network downtime.
Restore the environment back to a secured normal state.
Minimize loss (e.g., financial, reputational, data, intellectual property).
An application server was recently attacked, resulting in compromise of all transactional
credit card
information via the website. It was revealed that the attacker was able to compromise a
system
administrator's computer via a spear phishing attack. This gave the attacker the ability to
compromise the
application server.
Which network security management practice should be applied to treat these
operational weaknesses? - answer>>>Increase training of information technology staff on
the dangers of social
engineering.
