WGU C845 INFORMATION SYSTEMS SECURITY (SSCP)ACTUAL EXAM WITH COMPLETE QUESTIONS AND CORRECT DETAILED ANSWERS (100% VERIFIED ANSWERS) |ALREADY GRADED A+| ||PROFESSOR VERIFIED|| ||BRANDNEW!!!|HIGH YIELD QUESTIONS AND ANSWERS|||2026!!!!!!

WGU C845 INFORMATION SYSTEMS SECURITY (SSCP)ACTUAL
EXAM WITH COMPLETE QUESTIONS AND CORRECT DETAILED
ANSWERS (100% VERIFIED ANSWERS) |ALREADY GRADED A+|
||PROFESSOR VERIFIED|| ||BRANDNEW!!!|HIGH YIELD
QUESTIONS AND ANSWERS|||2026!!!!!!
1. Which of the following is a symmetric algorithm?
A. Diffie-Hellman
B. RSA
C. AES
D. HMAC
Correct Answer: C
Rationale: AES is a symmetric block cipher. RSA and Diffie-Hellman are asymmetric, while HMAC
is a hashing mechanism.
2. In a DAC system, how can a user be given the power to set privileges on an object for other
users?
A. Remove special permissions
B. Grant full control over the object
C. Give modify privilege
D. Issue an administrative label
Correct Answer: B
Rationale: Full control allows a user to assign permissions to others.
3. How often should end users receive security awareness training?
A. Once a year and upon termination
B. Upon new hire and once a year thereafter
C. Upon termination only
D. Twice a year
Correct Answer: B
Rationale: Best practice is training at hire and annually thereafter.
4. Which event is more likely to trigger a BCP rather than a DRP?
A. Port scanning
B. Security breach of admin account
C. Users forgetting credentials
D. Level 5 hurricane
Correct Answer: B
Rationale: BCP addresses continuity during breaches; DRP is for disasters.
5. Which IEEE standard provides port-based network access control?
A. 802.1x
B. 802.15
C. 802.3

,D. 802.11
Correct Answer: A
Rationale: 802.1x enforces authentication for devices connecting to a network.
6. Why is change control used in software asset management?
A. To stop changes
B. To oversee procurement
C. To prevent unintended reduction in security
D. To restrict privileges
Correct Answer: C
Rationale: Change control ensures updates don’t weaken security.
7. What is the cost-benefit equation in risk analysis?
A. (ALE1 – ALE2) – CCM
B. AES – CCMP
C. Initial risk – countermeasure benefit
D. AV × EF × ARO
Correct Answer: A
Rationale: It compares annualized loss expectancy before and after controls minus control cost.
8. Best way to restore current data with weekly full and daily differential backups?
A. Restore full backup + last differential
B. Restore only last differential
C. Restore full + all differentials
D. Restore differential then full
Correct Answer: A
Rationale: Differential backups depend on the last full backup plus the most recent differential.
9. Which is NOT a non-discretionary access control system?
A. MAC
B. ACL
C. ABAC
D. RBAC
Correct Answer: B
Rationale: ACLs are discretionary; MAC, ABAC, and RBAC are non-discretionary.
10. How should countermeasures be implemented in recovery phase of incident response?
A. Next year’s review
B. Lowest cost option
C. As defined by policy
D. Based on violation that occurred
Correct Answer: D
Rationale: Recovery requires countermeasures tailored to the incident.
11. How can MAC flooding attacks be prevented?
A. Restrict DHCP

,B. Use static HOSTS file
C. Use MAC limiting on switch ports
D. Implement ARP monitor
Correct Answer: C
Rationale: Limiting MAC addresses per port prevents flooding attacks.
12. How is quantitative risk analysis performed?
A. Delphi technique
B. Scenario-based assessments
C. Calculations
D. Employee interviews
Correct Answer: C
Rationale: Quantitative analysis uses numerical values like ALE.
13. Which motherboard component securely stores encryption keys?
A. CMOS
B. RAM
C. TPM
D. CPU
Correct Answer: C
Rationale: Trusted Platform Module stores keys securely.
14. When should law enforcement be contacted after a breach?
A. If violation exceeds company policy
B. If any breach occurs
C. If tolerable risk realized
D. If insider uses credentials
Correct Answer: A
Rationale: Law enforcement is contacted for serious breaches.
15. Which attack uses pre-computed hash values?
A. Brute force
B. Rainbow table
C. Frequency analysis
D. Chosen plaintext
Correct Answer: B
Rationale: Rainbow tables use pre-computed hashes to crack passwords.
16. What is the purpose of a SIEM product?
A. Real-time logging and analysis
B. Define security requirements
C. Plan conferences
D. Improve training
Correct Answer: A
Rationale: SIEM centralizes and analyzes logs for security events.

, 17. How does salting passwords help?
A. Prevents automated attacks
B. Forces attacker to focus on one account
C. Triggers lockout
D. Increases workload
Correct Answer: D
Rationale: Salting adds randomness, making cracking harder.
18. Which clearance label is NOT used in government MAC?
A. Unclassified
B. Confidential
C. Top Secret
D. Proprietary
Correct Answer: D
Rationale: Proprietary is corporate, not government classification.
19. Why use one-way trust in federated access?
A. Website trusts social networks only
B. Two-way trust invalid across Internet
C. One-way allows file storage access
D. Two-way grants full database access
Correct Answer: A
Rationale: One-way trust avoids exposing your system to external control.
20. Why report risks under ERM?
A. Predict loss, select countermeasures
B. Government regulation
C. Transparency, assessment, response, monitoring
D. Strategic planning
Correct Answer: C
Rationale: ERM ensures risks are managed consistently.
21. Which technology minimizes risk of static password attacks in wireless?
A. IEEE 802.1x
B. IEEE 802.15
C. IEEE 802.11n
D. IEEE 802.1q
Correct Answer: A
Rationale: 802.1x enforces dynamic authentication.
22. Passwords are primarily used for:
A. Authorization
B. Authentication
C. Identification
D. Auditing