1|Page
WGU D488 OA Final Exam Test Bank/WGU
D488 Cybersecurity Architecture &
Engineering| Actual Questions And Correct
Answers
An engineer has noticed a degradation in system performance and alerts
regarding high central processing unit (CPU) usage on multiple virtual machines in
the environment. Further investigation shows that several unknown processes are
running on the affected systems. What is the explanation for the degradation in
system performance and alerts regarding high central processing unit (CPU)
usage?
A -Misconfigured firewall
B - Overly permissive web application firewall (WAF) rules
C - Outdated anti-malware signatures
D - Incorrect file permissions - correct-answer -C - Outdated anti-malware
signatures
A financial services company has experienced several incidents of data breaches in
recent months. The company has analyzed the indicators of compromise and
determined that the data breaches were caused by insider threats. The company
has decided to implement hardening techniques and endpoint security controls to
mitigate the risk. What should be used to prevent data breaches caused by insider
threats based on the indicators of compromise?
,2|Page
A - Network monitoring
B - Intrusion detection systems (IDS)
C - Data loss prevention (DLP)
D - Access control systems (ACS) - correct-answer -C - Data loss prevention (DLP)
The cybersecurity analyst at a software company conducted a vulnerability
assessment to identify potential security risks to the organization and discovered
multiple vulnerabilities on the company's webpage. The analyst then provided the
results to the chief information security officer (CISO), who then decided not to fix
the discrepancies due to the vulnerabilities being outside of the organization's
resources. Which risk mitigation strategy is demonstrated in this scenario?
A - Accept
B - Mitigate
C - Avoid
D - Transfer - correct-answer -A - Accept
A company wants to implement a policy to reduce the risk of unauthorized access
to sensitive information. Which policy should be implemented?
A - Least privilege
B - Separation of duties
C - Job rotation
D - Data encryption - correct-answer -A - Least privilege
,3|Page
A company is developing a cybersecurity risk management program and wants to
establish metrics to measure the program's effectiveness. What should the
company consider?
A - Key performance indicators (KPIs)
B - Key risk indicators (KRIs)
C - Risk appetite
D - Risk tolerance - correct-answer -A - Key performance indicators (KPIs)
A manufacturing company recently conducted a cybersecurity assessment which
identified several vulnerabilities, including unsecured wireless networks and a lack
of knowledge of cybersecurity best practices by employees. Which risk mitigation
process should the company use to address these vulnerabilities?
A - Implement wireless network encryption and enforce regular employee security
training
B - Install intrusion detection systems and segment production networks
C - Enforce strict password policies and conduct regular vulnerability scans
D - Encrypt sensitive production data and conduct regular security audits - correct-
answer -A - Implement wireless network encryption and enforce regular
employee security training
A company has discovered a vulnerability in its Kubernetes deployment that
allows attackers to execute commands on the Kubernetes cluster's nodes. The
company has decided to implement risk mitigation processes to address this
, 4|Page
vulnerability. Which risk mitigation process is the most effective in mitigating the
vulnerability associated with the Kubernetes deployment?
A - Implementing network segmentation to isolate the Kubernetes nodes from the
rest of the network
B - Implementing a web application firewall (WAF) to inspect all incoming and
outgoing traffic
C - Implementing a security information and event management (SIEM) solution
to detect and respond to potential attacks
D - Implementing multifactor authentication (MFA) for all users accessing the
Kubernetes cluster - correct-answer -A - Implementing network segmentation to
isolate the Kubernetes nodes from the rest of the network
An organization has recently signed a contract with a new vendor to provide a
critical service. The service will involve the vendor having access to sensitive
customer data. The organization's management is concerned about the risks
associated with using a new vendor and wants to know the best ways to mitigate
those risks. Which strategy will meet the needs of the company?
A - Conducting a vendor viability assessment to ensure the vendor has the
necessary resources and expertise to provide the service
B - Implementing a vendor lock-in strategy to ensure that the vendor continues to
provide the necessary service
C - Assessing the risk of merger or acquisition of the vendor to ensure the
continuity of service
D - Ensuring supply chain visibility to monitor the vendor's activities and identify
potential vulnerabilities - correct-answer -A - Conducting a vendor viability
assessment to ensure the vendor has the necessary resources and expertise to
provide the service
WGU D488 OA Final Exam Test Bank/WGU
D488 Cybersecurity Architecture &
Engineering| Actual Questions And Correct
Answers
An engineer has noticed a degradation in system performance and alerts
regarding high central processing unit (CPU) usage on multiple virtual machines in
the environment. Further investigation shows that several unknown processes are
running on the affected systems. What is the explanation for the degradation in
system performance and alerts regarding high central processing unit (CPU)
usage?
A -Misconfigured firewall
B - Overly permissive web application firewall (WAF) rules
C - Outdated anti-malware signatures
D - Incorrect file permissions - correct-answer -C - Outdated anti-malware
signatures
A financial services company has experienced several incidents of data breaches in
recent months. The company has analyzed the indicators of compromise and
determined that the data breaches were caused by insider threats. The company
has decided to implement hardening techniques and endpoint security controls to
mitigate the risk. What should be used to prevent data breaches caused by insider
threats based on the indicators of compromise?
,2|Page
A - Network monitoring
B - Intrusion detection systems (IDS)
C - Data loss prevention (DLP)
D - Access control systems (ACS) - correct-answer -C - Data loss prevention (DLP)
The cybersecurity analyst at a software company conducted a vulnerability
assessment to identify potential security risks to the organization and discovered
multiple vulnerabilities on the company's webpage. The analyst then provided the
results to the chief information security officer (CISO), who then decided not to fix
the discrepancies due to the vulnerabilities being outside of the organization's
resources. Which risk mitigation strategy is demonstrated in this scenario?
A - Accept
B - Mitigate
C - Avoid
D - Transfer - correct-answer -A - Accept
A company wants to implement a policy to reduce the risk of unauthorized access
to sensitive information. Which policy should be implemented?
A - Least privilege
B - Separation of duties
C - Job rotation
D - Data encryption - correct-answer -A - Least privilege
,3|Page
A company is developing a cybersecurity risk management program and wants to
establish metrics to measure the program's effectiveness. What should the
company consider?
A - Key performance indicators (KPIs)
B - Key risk indicators (KRIs)
C - Risk appetite
D - Risk tolerance - correct-answer -A - Key performance indicators (KPIs)
A manufacturing company recently conducted a cybersecurity assessment which
identified several vulnerabilities, including unsecured wireless networks and a lack
of knowledge of cybersecurity best practices by employees. Which risk mitigation
process should the company use to address these vulnerabilities?
A - Implement wireless network encryption and enforce regular employee security
training
B - Install intrusion detection systems and segment production networks
C - Enforce strict password policies and conduct regular vulnerability scans
D - Encrypt sensitive production data and conduct regular security audits - correct-
answer -A - Implement wireless network encryption and enforce regular
employee security training
A company has discovered a vulnerability in its Kubernetes deployment that
allows attackers to execute commands on the Kubernetes cluster's nodes. The
company has decided to implement risk mitigation processes to address this
, 4|Page
vulnerability. Which risk mitigation process is the most effective in mitigating the
vulnerability associated with the Kubernetes deployment?
A - Implementing network segmentation to isolate the Kubernetes nodes from the
rest of the network
B - Implementing a web application firewall (WAF) to inspect all incoming and
outgoing traffic
C - Implementing a security information and event management (SIEM) solution
to detect and respond to potential attacks
D - Implementing multifactor authentication (MFA) for all users accessing the
Kubernetes cluster - correct-answer -A - Implementing network segmentation to
isolate the Kubernetes nodes from the rest of the network
An organization has recently signed a contract with a new vendor to provide a
critical service. The service will involve the vendor having access to sensitive
customer data. The organization's management is concerned about the risks
associated with using a new vendor and wants to know the best ways to mitigate
those risks. Which strategy will meet the needs of the company?
A - Conducting a vendor viability assessment to ensure the vendor has the
necessary resources and expertise to provide the service
B - Implementing a vendor lock-in strategy to ensure that the vendor continues to
provide the necessary service
C - Assessing the risk of merger or acquisition of the vendor to ensure the
continuity of service
D - Ensuring supply chain visibility to monitor the vendor's activities and identify
potential vulnerabilities - correct-answer -A - Conducting a vendor viability
assessment to ensure the vendor has the necessary resources and expertise to
provide the service
