PASS WGU D430 OA 2026 | FUNDAMENTALS
OF INFORMATION SECURITY PRACTICE
TEST BANK
1. ____ is the process of verifying the identity of the receiver of the data.
Authorization
Encryption
Authentication
Identification
2. What is the primary goal of a Denial of Service (DoS) attack?
To make a service unavailable to users
To steal user credentials
To encrypt user data
To install malware on user devices
3. Describe the significance of each phase in the incident response cycle.
The phases are irrelevant as incidents can be handled in any
order.
Each phase is crucial for effectively managing security
incidents and minimizing damage.
The phases focus solely on technical responses without
considering organizational impact.
Only the recovery phase is important for incident management.
4. Which part of the CIA triad is concerned with privacy?
,Integrity
, Availability
Non-Repudiation
Confidentiality
5. If an organization implements Mandatory Access Control (MAC), what
would be a likely impact on user access compared to a Discretionary
Access Control (DAC) model?
User access would be more flexible and based on individual
discretion.
User access would be more restricted and controlled by a
central authority.
User access would be granted based on a first-come, first-
served basis.
User access would be determined solely by the user's role in the
organization.
6. What is Two-Factor Authentication?
Involves three distinct stages to confirm your identity.
Requires physical and digital proof to confirm your identity.
Relies on a single piece of information to verify your identity.
Uses two different methods to verify your identity.
7. What is the correct series of phases in the incident response process?
Preparation, threat hunting, identification, containment,
eradication, and recovery
Preparation, identification, containment, eradication, recovery,
and lessons learned
Preparation, scanning, containment, eradication, recovery, and
, lessons learned
Scanning, identification, containment, eradication, recovery, and
lessons learned
8. In a scenario where a user attempts to change their online banking
password from a different country, how would geo-location
authentication impact this action?
It would require additional password verification only.
It would automatically approve the action based on user history.
It would likely prevent the action unless the user is in an
authorized location.
It would allow the action without any restrictions.
9. What does unauthorized access compromise in information security?
Authentication
Availability
Confidentiality
Integrity
10. The CIA triad is an important model in the area of information security.
What does CIA stand for in the context of cybersecurity?
Confidentiality, Integrity, Availability
Cyber, Individual, Aware
Central, Intelligence, Agency
Corporate, Investigation, Access
11. Describe the primary function of Network ACLs in managing network
security.
OF INFORMATION SECURITY PRACTICE
TEST BANK
1. ____ is the process of verifying the identity of the receiver of the data.
Authorization
Encryption
Authentication
Identification
2. What is the primary goal of a Denial of Service (DoS) attack?
To make a service unavailable to users
To steal user credentials
To encrypt user data
To install malware on user devices
3. Describe the significance of each phase in the incident response cycle.
The phases are irrelevant as incidents can be handled in any
order.
Each phase is crucial for effectively managing security
incidents and minimizing damage.
The phases focus solely on technical responses without
considering organizational impact.
Only the recovery phase is important for incident management.
4. Which part of the CIA triad is concerned with privacy?
,Integrity
, Availability
Non-Repudiation
Confidentiality
5. If an organization implements Mandatory Access Control (MAC), what
would be a likely impact on user access compared to a Discretionary
Access Control (DAC) model?
User access would be more flexible and based on individual
discretion.
User access would be more restricted and controlled by a
central authority.
User access would be granted based on a first-come, first-
served basis.
User access would be determined solely by the user's role in the
organization.
6. What is Two-Factor Authentication?
Involves three distinct stages to confirm your identity.
Requires physical and digital proof to confirm your identity.
Relies on a single piece of information to verify your identity.
Uses two different methods to verify your identity.
7. What is the correct series of phases in the incident response process?
Preparation, threat hunting, identification, containment,
eradication, and recovery
Preparation, identification, containment, eradication, recovery,
and lessons learned
Preparation, scanning, containment, eradication, recovery, and
, lessons learned
Scanning, identification, containment, eradication, recovery, and
lessons learned
8. In a scenario where a user attempts to change their online banking
password from a different country, how would geo-location
authentication impact this action?
It would require additional password verification only.
It would automatically approve the action based on user history.
It would likely prevent the action unless the user is in an
authorized location.
It would allow the action without any restrictions.
9. What does unauthorized access compromise in information security?
Authentication
Availability
Confidentiality
Integrity
10. The CIA triad is an important model in the area of information security.
What does CIA stand for in the context of cybersecurity?
Confidentiality, Integrity, Availability
Cyber, Individual, Aware
Central, Intelligence, Agency
Corporate, Investigation, Access
11. Describe the primary function of Network ACLs in managing network
security.
