WGU D320 COMPLETE COMPREHENSIVE QUESTIONS AND CORRECT SOLUTIONS OBJECTIVE ASSESSMENT NEWEST 2024 [ALREADY GRADED A+]

WGU D320 COMPLETE COMPREHENSIVE QUESTIONS AND CORRECT SOLUTIONS OBJECTIVE ASSESSMENT NEWEST 2024 [ALREADY GRADED A+] 1: Implements Secure Solutions Which technology is most effective in preventing unauthorized access to sensitive data by ensuring it is unreadable without proper decryption keys - ANSWER-A. Data Masking B. Tokenization C. Encryption D. Obfuscation Correct Answer: C. Encryption Explanation: Encryption transforms readable data into an unreadable format using cryptographic algorithms, making it inaccessible to unauthorized users. Tokenization and data masking are also methods of protecting data, but they do not provide the same level of security as encryption. Obfuscation is the process of making data more difficult to understand but is not intended to prevent access. .1: Implements Secure Solutions Which technology should be implemented to ensure secure communication between on-site enterprise systems and a cloud platform - ANSWER-A. Domain Name System Security Extensions (DNSSEC) B. Internet Protocol Security (IPSec) VPN C. Web Application Firewall (WAF) D. Data Loss Prevention (DLP) Correct Answer: B. Internet Protocol Security (IPSec) VPN Explanation: • IPSec VPN is designed to secure communication over an IP network. It encrypts the entire IP packet for secure transmission between on-site systems and cloud platforms, ensuring data integrity and confidentiality. • DNSSEC ensures the integrity of DNS responses but doesn't provide secure communication between systems. • WAF protects web applications by filtering and monitoring HTTP traffic but is not used for secure communication between systems. • DLP prevents data breaches by monitoring and controlling data flows, but it doesn't establish secure communication channels. .10: Implements Operations In which phase of the cloud data lifecycle should encryption be implemented to protect data - ANSWER-A. Create B. Store C. Share D. Destroy Correct Answer: B. Store Explanation: Encryption should be applied when data is stored to protect it from unauthorized access. While encryption may also be used in other phases like Share, the Store phase is where it is critical to protect data at rest. .100: Identifies Legal, Compliance, and Ethical Concerns Which of the following best describes the requirement for organizations to notify individuals in the event of a data breach under GDPR - ANSWER-A. Purpose Limitation B. Data Minimization C. Data Breach Notification D. Integrity and Confidentiality Correct Answer: C. Data Breach Notification Explanation: GDPR requires organizations to notify individuals in the event of a data breach that affects their personal data. Purpose Limitation and Data Minimization are principles for data use and collection, while Integrity and Confidentiality protect data from unauthorized access. .11: Conducts Risk Management Which risk management strategy aims to reduce the likelihood and impact of risks through the implementation of controls - ANSWER-A. Risk Avoidance B. Risk Mitigation C. Risk Transference D. Risk Acceptance Correct Answer: B. Risk Mitigation Explanation: Risk Mitigation involves implementing controls to reduce the likelihood and/or impact of risks. Risk Avoidance eliminates the risk, Risk Transference shifts the risk to another party, and Risk Acceptance involves accepting the risk without taking action. .12: Identifies Legal, Compliance, and Ethical Concerns Which legal control ensures that personally identifiable information (PII) is processed in compliance with relevant data protection laws - ANSWER-A. Data Encryption B. Access Control C. Data Retention Policy D. Third-Party Audits Correct Answer: D. Third-Party Audits Explanation: Third-party audits help verify that PII is being processed in compliance with relevant data protection laws, ensuring legal compliance. Data Encryption and Access Control are technical controls, and Data Retention Policy addresses data storage, but third-party audits provide external validation of compliance. .13: Implements Secure Solutions Which type of encryption is typically used to secure data at rest in cloud storage environments - ANSWER-A. Transport Layer Security (TLS) B. File-Level Encryption C. Proxy-Based Encryption D. Whole-Instance Encryption Correct Answer: D. Whole-Instance Encryption Explanation: Whole-instance encryption encrypts all data at rest in a cloud instance, providing comprehensive protection. File-level encryption protects specific files, and proxy-based encryption handles encryption at a proxy, while TLS is used for securing data in transit. .14: Implements Operations Which cloud operation management process ensures that only approved changes are implemented in the cloud environment - ANSWER-A. Incident Management B. Change Management C. Problem Management D. Release Management Correct Answer: B. Change Management Explanation: Change Management ensures that all changes in the cloud environment are authorized, tested, and implemented in a controlled manner to prevent disruptions. Incident Management deals with resolving incidents, Problem Management addresses underlying issues, and Release Management handles the deployment of new versions. .15: Conducts Risk Management Which of the following risk types is most commonly transferred through the use of insurance - ANSWER-A. Operational Risk B. Strategic Risk C. Financial Risk D. Legal Risk Correct Answer: C. Financial Risk Explanation: Financial Risk is often transferred through insurance, which provides coverage for potential financial losses. Operational Risk may also be transferred, but Financial Risk is more directly associated with insurance. Strategic and Legal Risks are less commonly transferred in this way. .16: Identifies Legal, Compliance, and Ethical Concerns Which regulation requires organizations to provide individuals with the right to access and correct their personal data - ANSWER-A. GDPR B. HIPAA C. GLBA D. SOX Correct Answer: A. GDPR Explanation: The General Data Protection Regulation (GDPR) mandates that individuals have the right to access and correct their personal data. HIPAA, GLBA, and SOX have different focuses, such as health information, financial privacy, and corporate governance, respectively. .17: Implements Secure Solutions Which technique is used to secure network communications between on-premises systems and cloud services - ANSWER-A. VPN B. HTTPS C. IPSec D. DNSSEC Correct Answer: A. VPN Explanation: A Virtual Private Network (VPN) creates a secure tunnel for communications between on-premises systems and cloud services, ensuring data confidentiality and integrity. HTTPS secures web traffic, IPSec secures IP traffic, and DNSSEC secures DNS queries, but VPN is the most comprehensive for connecting networks. .18: Implements Operations Which tool is commonly used to maintain system configurations and automate deployments in cloud environments - ANSWER-A. Puppet B. Jenkins C. Nagios D. Git Correct Answer: A. Puppet Explanation: Puppet is a configuration management tool used to automate system configuration and deployment processes in cloud environments. Jenkins is used for continuous integration, Nagios for monitoring, and Git for version control. .19: Conducts Risk Management Which phase of risk management involves monitoring risks and the effectiveness of controls over time - ANSWER-A. Risk Identification B. Risk Assessment C. Risk Monitoring D. Risk Mitigation Correct Answer: C. Risk Monitoring Explanation: Risk Monitoring involves continuously assessing risks and the effectiveness of controls over time, making adjustments as necessary. Risk Identification and Assessment occur earlier in the process, while Risk Mitigation involves implementing controls. .2: Implements Operations Which of the following activities is essential during the Secure Operations phase of the Software Development Lifecycle (SDLC) - ANSWER-A. Static Analysis B. Code Review C. Dynamic Analysis D. Acceptance Testing Correct Answer: C. Dynamic Analysis Explanation: Dynamic Analysis is crucial during the secure operations phase because it involves testing the software in a runtime environment, identifying security vulnerabilities that might only become apparent during execution. Static Analysis and Code Review are performed earlier in the SDLC, and Acceptance Testing is typically done after secure operations to verify the system meets the requirements.