WGU D488 Actual Exam
Questions With Reviewed 100%
Correct Detailed Answers With
Rationale = Guaranteed Pass
1. A security architect is planning a Statement of Work to perform services at
various levels of the Risk Management Lifecycle. The security architect
should allocate the most hours to which phase?
A - Identify
B - Assess
C - Control
D - Review - ANSWER C - Control
The control phase identifies effective ways to reduce identified risks. The effective
identification and implementation of these controls represent a significant
amount of the work effort undertaken by security practitioners.
The identify phase includes the identification of risk items. In accordance with the
beginning critical security controls, security starts with a foundation of
inventorying.
The assess phase analyzes identified risks to determine their associated level of
risk.
,In the review phase, an administrator must periodically re-evaluate each risk item
to determine if the risk level has changed or if the identified controls are still
effective.
2. A security engineer works for a mid-sized retail company on the systems
administration team. The company wants to estimate the potential
financial impact of a single occurrence of a web server going down, which
could lead to lost sales. What is this estimated financial impact per incident
called?
A -SLE
B - ALE
C - ARO
D - EF - ANSWER A - SLE (Single Loss Expectancy)
Single Loss Expectancy (SLE) is the amount lost in a single occurrence of the risk
factor, such as the cost during downtime.
Annual Loss Expectancy (ALE) is the amount lost over the course of a year, or the
sum-total of all single loss events over the span of 12 months.
Annual Rate of Occurrence (ARO) is the number of times in a year that the single
loss occurs.
Exposure Factor (EF) is the percentage of the asset value lost. The SLE is equal to
the exposure factor multiplied by the Asset Value (AV). The AV is the value of an
asset, such as a server or even an entire building.
, 3. A security project manager is considering transitioning to a cloud-based
strategy for a company. The company currently operates with a minimal
team in their data center services and aims to reduce their responsibilities
while maintaining service quality. Which cloud solution would require the
least amount of management and maintenance from this team?
A - IaaS
B - PaaS
C - SaaS
D - On-site - ANSWER C - SaaS
Software as a Service (SaaS) represents the lowest amount of responsibility for
the customer as the facilities, utilities, physical security, platform, and
applications are the provider's responsibility.
Infrastructure as a Service (IaaS) provides hardware hosted at a provider facility,
using the provider's physical security controls and utilities, such as power.
Platform as a Service (PaaS) provides a selection of operating systems loaded and
configured by the customer. The underlying infrastructure, facilities, utilities, and
physical security are the provider's responsibility.
On-premise would not alleviate the company's workload since it would still
remain on-site, and they would be responsible for everything.
4. A security consultant is conducting a security assessment and is trying to
communicate reasons that flaws may exist. What are the primary
categories in which these flaws exist? Select 3 answers.
A - Communication
, B - People
C - Process
D - Technology - ANSWER B, C, & D; People, Process, and Technology
People ultimately are most directly impacted by technology. This is one of the
major categories for finding flaws and the reason phishing is the most common
form of breaches.
Process is another major area where flaws occur. An ambiguous process might
exist that allows attacks to use fraudulent emails to request wire transfers.
Technological controls also provide effective defenses against many security
threats, but they also rely on people and processes.
While communication is a component of people and processes, the three main
categories where flaws exist are people, process, and technology.
5. A disaster recovery manager is trying to assess the residual risk when
comparing it to the company's inherent risk. What measures should the
manager look at to determine this? Select 3 answers.
A - Risk transference
B - Risk acceptance
C - Risk appetite
D - Risk mitigation - ANSWER A, B, & C; Risk transference, Risk acceptance,
and Risk Mitigation
Risk transference is one component of finding residual risk compared to inherent
risk. It means assigning risk to a third party, typically exemplified through the
purchase of an insurance policy.
Questions With Reviewed 100%
Correct Detailed Answers With
Rationale = Guaranteed Pass
1. A security architect is planning a Statement of Work to perform services at
various levels of the Risk Management Lifecycle. The security architect
should allocate the most hours to which phase?
A - Identify
B - Assess
C - Control
D - Review - ANSWER C - Control
The control phase identifies effective ways to reduce identified risks. The effective
identification and implementation of these controls represent a significant
amount of the work effort undertaken by security practitioners.
The identify phase includes the identification of risk items. In accordance with the
beginning critical security controls, security starts with a foundation of
inventorying.
The assess phase analyzes identified risks to determine their associated level of
risk.
,In the review phase, an administrator must periodically re-evaluate each risk item
to determine if the risk level has changed or if the identified controls are still
effective.
2. A security engineer works for a mid-sized retail company on the systems
administration team. The company wants to estimate the potential
financial impact of a single occurrence of a web server going down, which
could lead to lost sales. What is this estimated financial impact per incident
called?
A -SLE
B - ALE
C - ARO
D - EF - ANSWER A - SLE (Single Loss Expectancy)
Single Loss Expectancy (SLE) is the amount lost in a single occurrence of the risk
factor, such as the cost during downtime.
Annual Loss Expectancy (ALE) is the amount lost over the course of a year, or the
sum-total of all single loss events over the span of 12 months.
Annual Rate of Occurrence (ARO) is the number of times in a year that the single
loss occurs.
Exposure Factor (EF) is the percentage of the asset value lost. The SLE is equal to
the exposure factor multiplied by the Asset Value (AV). The AV is the value of an
asset, such as a server or even an entire building.
, 3. A security project manager is considering transitioning to a cloud-based
strategy for a company. The company currently operates with a minimal
team in their data center services and aims to reduce their responsibilities
while maintaining service quality. Which cloud solution would require the
least amount of management and maintenance from this team?
A - IaaS
B - PaaS
C - SaaS
D - On-site - ANSWER C - SaaS
Software as a Service (SaaS) represents the lowest amount of responsibility for
the customer as the facilities, utilities, physical security, platform, and
applications are the provider's responsibility.
Infrastructure as a Service (IaaS) provides hardware hosted at a provider facility,
using the provider's physical security controls and utilities, such as power.
Platform as a Service (PaaS) provides a selection of operating systems loaded and
configured by the customer. The underlying infrastructure, facilities, utilities, and
physical security are the provider's responsibility.
On-premise would not alleviate the company's workload since it would still
remain on-site, and they would be responsible for everything.
4. A security consultant is conducting a security assessment and is trying to
communicate reasons that flaws may exist. What are the primary
categories in which these flaws exist? Select 3 answers.
A - Communication
, B - People
C - Process
D - Technology - ANSWER B, C, & D; People, Process, and Technology
People ultimately are most directly impacted by technology. This is one of the
major categories for finding flaws and the reason phishing is the most common
form of breaches.
Process is another major area where flaws occur. An ambiguous process might
exist that allows attacks to use fraudulent emails to request wire transfers.
Technological controls also provide effective defenses against many security
threats, but they also rely on people and processes.
While communication is a component of people and processes, the three main
categories where flaws exist are people, process, and technology.
5. A disaster recovery manager is trying to assess the residual risk when
comparing it to the company's inherent risk. What measures should the
manager look at to determine this? Select 3 answers.
A - Risk transference
B - Risk acceptance
C - Risk appetite
D - Risk mitigation - ANSWER A, B, & C; Risk transference, Risk acceptance,
and Risk Mitigation
Risk transference is one component of finding residual risk compared to inherent
risk. It means assigning risk to a third party, typically exemplified through the
purchase of an insurance policy.
