Page 1 of 66
WGU D487 SECURE SOFTWARE DESIGN
EXAM ACCELERATOR: ULTIMATE STUDY
GUIDE, PRACTICE SCENARIOS & PASS-
FIRST-TRY BLUEPRINT
Question 1
During which SDLC phase does the secure and complete removal of an application
from all systems typically occur?
o Testing phase
o Design phase
o Implementation phase
o End of life phase
Explanation >>>>The end-of-life phase involves retiring the software, which
includes securely removing it from all systems to prevent potential vulnerabilities.
2. Question 2
A cybersecurity team identifies vulnerabilities and explores potential attack
routes when analyzing a web application's security risks. What is this process
known as?
o Security development life cycle (SDL)
o Implementation phase
o Testing phase
o Threat modeling
Explanation >>>>Threat modeling is used to identify potential security threats,
vulnerabilities, and attack vectors, allowing for proactive security measures to be
put in place.
, Page 2 of 66
3. Question 3
When a software application is released to the production environment, marking
it accessible to users, which SDLC phase is represented?
o Deployment phase
o Requirement phase
o Design phase
o Maintenance phase
Explanation >>>>The deployment phase is when the software has passed testing
and is released for users in a live production environment.
4. Question 4
A structured approach ensures that security is integrated into every stage of
software development. What is the name for this approach?
o Security Development Life Cycle (SDL)
o Maintenance phase
o Threat modeling
o Software Development Life Cycle (SDLC)
Explanation >>>>A Security Development Life Cycle ensures that security
considerations are addressed throughout the software development process,
from planning to deployment.
5. Question 5
A software engineer focuses on the physical components that support a new
software application, encompassing servers and network devices. What is the
term for these components?
o Hardware
o Software
o Secure code
, Page 3 of 66
o Threat modeling
Explanation >>>>Hardware refers to the physical components of a computer
system, while software represents the programs and data that run on it.
6. Question 6
During which SDLC phase does a team prepare detailed technical specifications
based on software requirements?
o Requirement phase
o Design phase
o Testing phase
o Maintenance phase
Explanation >>>>The design phase is when the team translates the requirements
into a detailed blueprint for the software, specifying how each requirement will
be implemented.
7. Question 7
A company monitors a newly deployed software application for security issues
and updates. Which SDLC phase covers this ongoing monitoring?
o Maintenance phase
o Testing phase
o Planning phase
o End of life phase
Explanation >>>>The maintenance phase involves continuous monitoring,
updates, and security patches to address any issues that arise after deployment.
8. Question 8
A company verifies that newly coded software meets functional requirements by
conducting tests in a controlled environment. In which SDLC phase does this
occur?
o Implementation phase
, Page 4 of 66
o Design phase
o Testing phase
o Deployment phase
Explanation >>>>The testing phase ensures the quality and functionality of the
software before it is released to the end-users.
9. Question 9
A developer incorporates trusted resources and modules to write the
application's initial code. This aligns with which SDLC phase?
o Deployment phase
o Testing phase
o Planning phase
o Implementation phase
Explanation >>>>Implementation involves writing the code, integrating different
modules, and ensuring the software works as per the design specifications.
10.Question 10
What term describes the programs run on workstations in an office, including the
operating system and applications?
o Threat modeling
o Secure code
o Software
o Hardware
Explanation >>>>Software includes all the programs and applications that run on
computer hardware, facilitating various tasks.
11.Question 11
A project manager uses a structured process to oversee software development
from its initial planning to end-of-life. What is this process called?
WGU D487 SECURE SOFTWARE DESIGN
EXAM ACCELERATOR: ULTIMATE STUDY
GUIDE, PRACTICE SCENARIOS & PASS-
FIRST-TRY BLUEPRINT
Question 1
During which SDLC phase does the secure and complete removal of an application
from all systems typically occur?
o Testing phase
o Design phase
o Implementation phase
o End of life phase
Explanation >>>>The end-of-life phase involves retiring the software, which
includes securely removing it from all systems to prevent potential vulnerabilities.
2. Question 2
A cybersecurity team identifies vulnerabilities and explores potential attack
routes when analyzing a web application's security risks. What is this process
known as?
o Security development life cycle (SDL)
o Implementation phase
o Testing phase
o Threat modeling
Explanation >>>>Threat modeling is used to identify potential security threats,
vulnerabilities, and attack vectors, allowing for proactive security measures to be
put in place.
, Page 2 of 66
3. Question 3
When a software application is released to the production environment, marking
it accessible to users, which SDLC phase is represented?
o Deployment phase
o Requirement phase
o Design phase
o Maintenance phase
Explanation >>>>The deployment phase is when the software has passed testing
and is released for users in a live production environment.
4. Question 4
A structured approach ensures that security is integrated into every stage of
software development. What is the name for this approach?
o Security Development Life Cycle (SDL)
o Maintenance phase
o Threat modeling
o Software Development Life Cycle (SDLC)
Explanation >>>>A Security Development Life Cycle ensures that security
considerations are addressed throughout the software development process,
from planning to deployment.
5. Question 5
A software engineer focuses on the physical components that support a new
software application, encompassing servers and network devices. What is the
term for these components?
o Hardware
o Software
o Secure code
, Page 3 of 66
o Threat modeling
Explanation >>>>Hardware refers to the physical components of a computer
system, while software represents the programs and data that run on it.
6. Question 6
During which SDLC phase does a team prepare detailed technical specifications
based on software requirements?
o Requirement phase
o Design phase
o Testing phase
o Maintenance phase
Explanation >>>>The design phase is when the team translates the requirements
into a detailed blueprint for the software, specifying how each requirement will
be implemented.
7. Question 7
A company monitors a newly deployed software application for security issues
and updates. Which SDLC phase covers this ongoing monitoring?
o Maintenance phase
o Testing phase
o Planning phase
o End of life phase
Explanation >>>>The maintenance phase involves continuous monitoring,
updates, and security patches to address any issues that arise after deployment.
8. Question 8
A company verifies that newly coded software meets functional requirements by
conducting tests in a controlled environment. In which SDLC phase does this
occur?
o Implementation phase
, Page 4 of 66
o Design phase
o Testing phase
o Deployment phase
Explanation >>>>The testing phase ensures the quality and functionality of the
software before it is released to the end-users.
9. Question 9
A developer incorporates trusted resources and modules to write the
application's initial code. This aligns with which SDLC phase?
o Deployment phase
o Testing phase
o Planning phase
o Implementation phase
Explanation >>>>Implementation involves writing the code, integrating different
modules, and ensuring the software works as per the design specifications.
10.Question 10
What term describes the programs run on workstations in an office, including the
operating system and applications?
o Threat modeling
o Secure code
o Software
o Hardware
Explanation >>>>Software includes all the programs and applications that run on
computer hardware, facilitating various tasks.
11.Question 11
A project manager uses a structured process to oversee software development
from its initial planning to end-of-life. What is this process called?
