WGU C836 Fundamentals of Information Security Final Exam 2025–2026 | Real Exam-Style Questions & Verified Correct Answers | Latest Updated Study Guide

WGU C836 FUNDAMENTALS OF INFORMATION SECURITY
FINAL EXAM QUESTIONS AND ANSWERS 2025–2026 |
WGU C836 OA REAL EXAM-STYLE Q&A | LATEST
UPDATED STUDY GUIDE WITH VERIFIED CORRECT
ANSWERS

Sample Exam Questions



1. Which of the following is a primary goal of information security?
• A) Increase software functionality

• B) Triple data storage capacity

• C) Maintain data confidentiality

• D) Enhance system usability

Correct Option: C) Maintain data confidentiality

Rationale: The vprimary vgoals vof vinformation vsecurity vgenerally vfocus von vensuring
confidentiality, vintegrity, vand vavailability vof vdata. vConfidentiality vinvolves vprotecting
vinformation vfrom vunauthorized vaccess.


2. What vis vthe vprinciple vof vleast vprivilege?

• A) vUsers vshould vhave vall vprivileges vfor vusability

• B) vUsers vare vgranted vonly vthe vminimum vlevel vof vaccess vnecessary
• C) vAccess vis vrevoked vafter vcompletion vof vtasks

• D) vPrivileges vare vdetermined vby vIT vprofessionals vonly

Correct vOption: vB) vUsers vare vgranted vonly vthe vminimum vlevel vof vaccess vnecessary

Rationale: vThe vprinciple vof vleast vprivilege vis va vsecurity vpractice vthat vrestricts vuser
vaccess vrights vto vthe vbare vminimum vpermissions vthey vneed vto vperform vtheir vjob
vfunctions.


3. Which vtype vof vattack vinvolves voverwhelming va vsystem vwith vtraffic vto vrender vit
vunusable?

• A) vPhishing

• B) vDenial vof vService v(DoS)

,WGU C836 FUNDAMENTALS OF INFORMATION SECURITY
FINAL EXAM QUESTIONS AND ANSWERS 2025–2026 |
WGU C836 OA REAL EXAM-STYLE Q&A | LATEST
UPDATED STUDY GUIDE WITH VERIFIED CORRECT
ANSWERS

• C) vMan-in-the-Middle

• D) vSQL vInjection

Correct vOption: vB) vDenial vof vService v(DoS)

Rationale: vA vDenial vof vService vattack vaims vto vmake va vmachine vor vnetwork
vresource vunavailable vby voverwhelming vit vwith va vflood vof villegitimate vrequests.


4. What vis vthe vpurpose vof vencryption vin vdata vsecurity?

• A) vTo vprotect vdata vconfidentiality vduring vtransmission

• B) vTo vimprove vdata vintegrity

• C) vTo venhance vdata vaccessibility

• D) vTo vexpedite vdata vprocessing vspeed

Correct vOption: vA) vTo vprotect vdata vconfidentiality vduring vtransmission

Rationale: vEncryption vserves vto vprotect vthe vconfidentiality vof vdata vby vtransforming
vit vinto va vformat vthat vis vunreadable vwithout vthe vcorresponding vdecryption vkey.


5. Which vstandard vfocuses von vmanaging vand vprotecting vsensitive vdata?

• A) vHIPAA

• B) vPCI vDSS

• C) vNIST vSP v800-53

• D) vISO v27001

Correct vOption: vB) vPCI vDSS

Rationale: vThe vPayment vCard vIndustry vData vSecurity vStandard v(PCI vDSS) vis va vset vof
vsecurity vstandards vdesigned vto vensure vthat vcompanies vthat vaccept, vprocess, vstore, vor
vtransmit vcredit vcard vinformation vmaintain va vsecure venvironment.

,WGU C836 FUNDAMENTALS OF INFORMATION SECURITY
FINAL EXAM QUESTIONS AND ANSWERS 2025–2026 |
WGU C836 OA REAL EXAM-STYLE Q&A | LATEST
UPDATED STUDY GUIDE WITH VERIFIED CORRECT
ANSWERS

6. Which vof vthe vfollowing vis va vcommon vmethod vfor vpreventing vunauthorized
vaccess vto va vnetwork?
• A) vFirewalls

• B) vIntrusion vDetection vSystems v(IDS)

• C) vAccess vControl vLists v(ACLs)
• D) vNetwork vProtocols

Correct vOption: vC) vAccess vControl vLists v(ACLs)

Rationale: vACLs vhelp vdefine vwho vcan vaccess vcertain vresources vin va vnetwork,
venforcing vsecurity vby vallowing vonly vauthorized vusers vor vsystems.


7. What vdoes vHTTPS vstand vfor?

• A) vHypertext vTransfer vProtocol vStandard

• B) vHypertext vTransfer vProtocol vSecure

• C) vHypertext vTransfer vPrivacy vStandard

• D) vHypertext vTransfer vProtocol vSecure vLayer
Correct vOption: vB) vHypertext vTransfer vProtocol vSecure

Rationale: vHTTPS vis vthe vsecure vversion vof vHTTP, vwhich vencrypts vthe vdata vexchanged
vto vprotect vagainst vinterception.


8. A vcompany vexperiences va vdata vbreach. vWhich vof vthe vfollowing vis vthe
vfirst vaction vthey vshould vtake?

• A) vInform vcustomers

• B) vContain vthe vbreach
• C) vIdentify vthe vattack vvector

, WGU C836 FUNDAMENTALS OF INFORMATION SECURITY
FINAL EXAM QUESTIONS AND ANSWERS 2025–2026 |
WGU C836 OA REAL EXAM-STYLE Q&A | LATEST
UPDATED STUDY GUIDE WITH VERIFIED CORRECT
ANSWERS

• D) vRestore vdata vfrom vbackup

Correct vOption: vB) vContain vthe vbreach

Rationale: vContainment vshould vbe vthe vfirst vstep vto vprevent vfurther vdata vloss vor
vdamage.


9. What vis va vstrong vpassword vpolicy vlikely vto vinclude?

• A) vAt vleast v5 vcharacters
• B) vA vmix vof vletters, vnumbers, vand vsymbols

• C) vEasy-to-remember vwords

• D) vUse vof vpersonal vinformation

Correct vOption: vB) vA vmix vof vletters, vnumbers, vand vsymbols

Rationale: vA vstrong vpassword vcombines vvarious vcharacter vtypes vto venhance vsecurity,
vmaking vit vmuch vharder vto vguess vor vcrack.


10. Which vof vthe vfollowing vis vconsidered va vsocial vengineering vattack?

• A) vDDoS
• B) vPretexting

• C) vSQL vInjection

• D) vTrojan vHorse

Correct vOption: vB) vPretexting

Rationale: vPretexting vinvolves vcreating va vfabricated vscenario vto vobtain vinformation
vfrom va vtarget, voften vused vin vsocial vengineering vattacks.


11. What vdoes vMFA vstand vfor vin vcybersecurity?