WGU Master's Course C706 - Secure
Software Design Latest 2026| Actual
Complete Questions and Verified Answers
What is a concern of security in third-party software?
A Secure development environment
B Security implanted during development
C Digital "aluminum foil"
D Untrusted distributions of software - ANSWER✔✔ A
A disadvantage of using third-party software is inflexibility.
A True
B False - ANSWER✔✔ A
Which term is used for software in government systems?
A COTS
B NOTS
C GOTS
D LOTS - ANSWER✔✔ C
,What is a challenge of using proprietary software?
A Proprietary format
B Open source nature
C Decreased license fees
D No End of Support - ANSWER✔✔ A
What is one disadvantage to outsourcing software development to a
third party?
A Tailored to business needs
B Experience with technology
C Ownership of code
D Available skilled resources - ANSWER✔✔ C
Which of the following is a consideration when evaluating vendors?
A Social Media Policy
B Priority Awareness
C Accreditation
D Certification - ANSWER✔✔ D
Which of the following represents an example of a vendor
,customization?
A Reporting components
B Incompatibility with other systems
C Access control inadherence
D Privacy regulation avoidance - ANSWER✔✔ A
____________ is to provide assurance to management of the
effectiveness of the security program and compliance with
regulations. - ANSWER✔✔ Role of Audit
Which of the following is important criteria in choosing a vendor to
purchase a product?
A Cost
B Repudiation
C Lateralization
D Unqualified staff - ANSWER✔✔ A
Cost and warranty are not considerations when comparing outsourced
or in-house vendor support.
A True
B False - ANSWER✔✔ B
, Which of the following is an additional consideration when evaluating
vendors?
A Ability to work with other vendors
B Compliance Methodology and Maturity
C Security Engineering Processes
D Resource Gathering - ANSWER✔✔ C
What are these?
Steps:
1) Security Assessment (Al)
2) Architecture (A2)
3) Design and Development (A3)
4) Design and Development (A4)
5) Ship (A5) - ANSWER✔✔ Key Success Factors, Deliverables, and
Metrics for Each Phase of the SDL Model
The _________________ of a software environment is the sum of the
different points where an attacker can try to enter data into or extract
data from an environment. - ANSWER✔✔ attack surface
The _______________________________ is the U.S. government repository
of standards-based vulnerability management data represented using
the Security Content Automation Protocol.
Software Design Latest 2026| Actual
Complete Questions and Verified Answers
What is a concern of security in third-party software?
A Secure development environment
B Security implanted during development
C Digital "aluminum foil"
D Untrusted distributions of software - ANSWER✔✔ A
A disadvantage of using third-party software is inflexibility.
A True
B False - ANSWER✔✔ A
Which term is used for software in government systems?
A COTS
B NOTS
C GOTS
D LOTS - ANSWER✔✔ C
,What is a challenge of using proprietary software?
A Proprietary format
B Open source nature
C Decreased license fees
D No End of Support - ANSWER✔✔ A
What is one disadvantage to outsourcing software development to a
third party?
A Tailored to business needs
B Experience with technology
C Ownership of code
D Available skilled resources - ANSWER✔✔ C
Which of the following is a consideration when evaluating vendors?
A Social Media Policy
B Priority Awareness
C Accreditation
D Certification - ANSWER✔✔ D
Which of the following represents an example of a vendor
,customization?
A Reporting components
B Incompatibility with other systems
C Access control inadherence
D Privacy regulation avoidance - ANSWER✔✔ A
____________ is to provide assurance to management of the
effectiveness of the security program and compliance with
regulations. - ANSWER✔✔ Role of Audit
Which of the following is important criteria in choosing a vendor to
purchase a product?
A Cost
B Repudiation
C Lateralization
D Unqualified staff - ANSWER✔✔ A
Cost and warranty are not considerations when comparing outsourced
or in-house vendor support.
A True
B False - ANSWER✔✔ B
, Which of the following is an additional consideration when evaluating
vendors?
A Ability to work with other vendors
B Compliance Methodology and Maturity
C Security Engineering Processes
D Resource Gathering - ANSWER✔✔ C
What are these?
Steps:
1) Security Assessment (Al)
2) Architecture (A2)
3) Design and Development (A3)
4) Design and Development (A4)
5) Ship (A5) - ANSWER✔✔ Key Success Factors, Deliverables, and
Metrics for Each Phase of the SDL Model
The _________________ of a software environment is the sum of the
different points where an attacker can try to enter data into or extract
data from an environment. - ANSWER✔✔ attack surface
The _______________________________ is the U.S. government repository
of standards-based vulnerability management data represented using
the Security Content Automation Protocol.
