WGU - D320 Verified Multiple Choice and Conceptual Actual Emended Exam
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
A. Domain Name System Security Ex-
tensions (DNSSEC)
B. Internet Protocol Security (IPSec)
VPN
C. Web Application Firewall (WAF)
D. Data Loss Prevention (DLP)
Correct Answer: B. Internet Protocol Se-
curity (IPSec) VPN
Explanation:
• IPSec VPN is designed to secure com-
munication over an IP network. It en-
1: Implements Secure Solutions
crypts the entire IP packet for secure
Which technology should be implement-
transmission between on-site systems
ed to ensure secure communication be-
and cloud platforms, ensuring data in-
tween on-site enterprise systems and a
tegrity and confidentiality.
cloud platform
• DNSSEC ensures the integrity of DNS
responses but doesn't provide secure
communication between systems.
• WAF protects web applications by filter-
ing and monitoring HTTP traffic but is not
used for secure communication between
systems.
• DLP prevents data breaches by mon-
itoring and controlling data flows, but it
doesn't establish secure communication
channels.
A. Share
B. Store
C. Use
D. Destroy
2: Implements Operations Correct Answer: B. Store
Which phase of the cloud data lifecycle Explanation:
is most likely to overlap with the 'Create' • Store often overlaps with the Create
phase in terms of implementing security phase because as soon as data is creat-
controls ed, it usually needs to be securely stored.
Security controls, such as encryption,
should be implemented at this stage.
• Share and Use happen after data is
stored.
, WGU - D320 Verified Multiple Choice and Conceptual Actual Emended Exam
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
• Destroy is the final stage in the lifecy-
cle and typically occurs after data is no
longer needed.
A. Mitigation
B. Avoidance
C. Transfer
D. Acceptance
Correct Answer: B. Avoidance
Explanation:
• Avoidance involves eliminating the risk
3: Conducts Risk Management
entirely, typically when the potential im-
Which risk management approach in-
pact is too great or when controls cannot
volves completely eliminating a risk be-
adequately reduce the risk to an accept-
cause it exceeds the organization's risk
able level.
appetite
• Mitigation involves reducing the risk to
an acceptable level.
• Transfer involves shifting the risk to a
third party, such as through insurance.
• Acceptance involves acknowledging
the risk and choosing to bear it without
further action.
A. Health Insurance Portability and Ac-
countability Act (HIPAA)
B. Sarbanes-Oxley Act (SOX)
C. Gramm-Leach-Bliley Act (GLBA)
D. Safe Harbor
Correct Answer: C. Gramm-Leach-Bliley
4: Identifies Legal, Compliance, and Eth- Act (GLBA)
ical Concerns Explanation:
Which United States law focuses specif- • GLBA is designed to protect consumer
ically on the privacy of financial informa- financial privacy by setting regulations
tion for how financial institutions handle pri-
vate data.
• HIPAA focuses on healthcare informa-
tion.
• SOX is concerned with corporate finan-
cial practices and reporting.
• Safe Harbor was an agreement be-
, WGU - D320 Verified Multiple Choice and Conceptual Actual Emended Exam
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
tween the US and EU for data transfers,
not specifically financial privacy.
A. Data Masking
B. Tokenization
C. Encryption
D. Obfuscation
Correct Answer: C. Encryption
1: Implements Secure Solutions Explanation: Encryption transforms
Which technology is most effective in readable data into an unreadable format
preventing unauthorized access to sen- using cryptographic algorithms, making
sitive data by ensuring it is unreadable it inaccessible to unauthorized users. To-
without proper decryption keys kenization and data masking are also
methods of protecting data, but they do
not provide the same level of security as
encryption. Obfuscation is the process of
making data more difficult to understand
but is not intended to prevent access.
A. Static Analysis
B. Code Review
C. Dynamic Analysis
D. Acceptance Testing
Correct Answer: C. Dynamic Analysis
Explanation: Dynamic Analysis is crucial
2: Implements Operations
during the secure operations phase be-
Which of the following activities is essen-
cause it involves testing the software in a
tial during the Secure Operations phase
runtime environment, identifying securi-
of the Software Development Lifecycle
ty vulnerabilities that might only become
(SDLC)
apparent during execution. Static Analy-
sis and Code Review are performed ear-
lier in the SDLC, and Acceptance Testing
is typically done after secure operations
to verify the system meets the require-
ments.
A. Risk Mitigation
B. Risk Avoidance
C. Risk Transference
D. Risk Acceptance
Correct Answer: C. Risk Transference
, Explanation: Risk Transference involves
shifting the impact of a risk to a third par-
3: Conducts Risk Management ty, often by using insurance or outsourc-
Which risk management approach in- ing certain activities. Risk Mitigation in-
volves the transfer of risk to another par- volves reducing the risk, Risk Avoidance
ty, such as through insurance involves eliminating the risk, and Risk
Acceptance involves acknowledging and
accepting the risk without further action.
A. Sarbanes-Oxley Act (SOX)
B. Health Insurance Portability and Ac-
countability Act (HIPAA)
C. Gramm-Leach-Bliley Act (GLBA)
D. Federal Information Security Manage-
4: Identifies Legal, Compliance, and Eth- ment Act (FISMA)
ical Concerns Correct Answer: B. Health Insur-
Which U.S. law focuses specifically on ance Portability and Accountability Act
the protection of personal health infor- (HIPAA)
mation Explanation: HIPAA sets standards for
the protection of personal health informa-
tion. SOX is related to corporate financial
practices, GLBA focuses on financial pri-
vacy, and FISMA applies to federal infor-
mation security management.
A. Software as a Service (SaaS)
B. Platform as a Service (PaaS)
C. Infrastructure as a Service (IaaS)
D. Containers as a Service (CaaS)
Correct Answer: C. Infrastructure as a
Service (IaaS)
5: Implements Secure Solutions
Explanation: In IaaS, the provider man-
Which cloud service model requires the
ages the underlying infrastructure, while
customer to manage the security of the
the customer is responsible for manag-
operating system, applications, and data
ing the security of the operating sys-
tem, applications, and data. In SaaS, the
provider manages everything, including
security. PaaS offers more management
of security, but the customer still handles
application security.
6: Implements Operations
What is the primary goal of implementing
a Disaster Recovery Plan (DRP) in cloud
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
A. Domain Name System Security Ex-
tensions (DNSSEC)
B. Internet Protocol Security (IPSec)
VPN
C. Web Application Firewall (WAF)
D. Data Loss Prevention (DLP)
Correct Answer: B. Internet Protocol Se-
curity (IPSec) VPN
Explanation:
• IPSec VPN is designed to secure com-
munication over an IP network. It en-
1: Implements Secure Solutions
crypts the entire IP packet for secure
Which technology should be implement-
transmission between on-site systems
ed to ensure secure communication be-
and cloud platforms, ensuring data in-
tween on-site enterprise systems and a
tegrity and confidentiality.
cloud platform
• DNSSEC ensures the integrity of DNS
responses but doesn't provide secure
communication between systems.
• WAF protects web applications by filter-
ing and monitoring HTTP traffic but is not
used for secure communication between
systems.
• DLP prevents data breaches by mon-
itoring and controlling data flows, but it
doesn't establish secure communication
channels.
A. Share
B. Store
C. Use
D. Destroy
2: Implements Operations Correct Answer: B. Store
Which phase of the cloud data lifecycle Explanation:
is most likely to overlap with the 'Create' • Store often overlaps with the Create
phase in terms of implementing security phase because as soon as data is creat-
controls ed, it usually needs to be securely stored.
Security controls, such as encryption,
should be implemented at this stage.
• Share and Use happen after data is
stored.
, WGU - D320 Verified Multiple Choice and Conceptual Actual Emended Exam
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
• Destroy is the final stage in the lifecy-
cle and typically occurs after data is no
longer needed.
A. Mitigation
B. Avoidance
C. Transfer
D. Acceptance
Correct Answer: B. Avoidance
Explanation:
• Avoidance involves eliminating the risk
3: Conducts Risk Management
entirely, typically when the potential im-
Which risk management approach in-
pact is too great or when controls cannot
volves completely eliminating a risk be-
adequately reduce the risk to an accept-
cause it exceeds the organization's risk
able level.
appetite
• Mitigation involves reducing the risk to
an acceptable level.
• Transfer involves shifting the risk to a
third party, such as through insurance.
• Acceptance involves acknowledging
the risk and choosing to bear it without
further action.
A. Health Insurance Portability and Ac-
countability Act (HIPAA)
B. Sarbanes-Oxley Act (SOX)
C. Gramm-Leach-Bliley Act (GLBA)
D. Safe Harbor
Correct Answer: C. Gramm-Leach-Bliley
4: Identifies Legal, Compliance, and Eth- Act (GLBA)
ical Concerns Explanation:
Which United States law focuses specif- • GLBA is designed to protect consumer
ically on the privacy of financial informa- financial privacy by setting regulations
tion for how financial institutions handle pri-
vate data.
• HIPAA focuses on healthcare informa-
tion.
• SOX is concerned with corporate finan-
cial practices and reporting.
• Safe Harbor was an agreement be-
, WGU - D320 Verified Multiple Choice and Conceptual Actual Emended Exam
Questions With Reviewed 100% Correct Detailed Answers
Guaranteed Pass!!Current Update
tween the US and EU for data transfers,
not specifically financial privacy.
A. Data Masking
B. Tokenization
C. Encryption
D. Obfuscation
Correct Answer: C. Encryption
1: Implements Secure Solutions Explanation: Encryption transforms
Which technology is most effective in readable data into an unreadable format
preventing unauthorized access to sen- using cryptographic algorithms, making
sitive data by ensuring it is unreadable it inaccessible to unauthorized users. To-
without proper decryption keys kenization and data masking are also
methods of protecting data, but they do
not provide the same level of security as
encryption. Obfuscation is the process of
making data more difficult to understand
but is not intended to prevent access.
A. Static Analysis
B. Code Review
C. Dynamic Analysis
D. Acceptance Testing
Correct Answer: C. Dynamic Analysis
Explanation: Dynamic Analysis is crucial
2: Implements Operations
during the secure operations phase be-
Which of the following activities is essen-
cause it involves testing the software in a
tial during the Secure Operations phase
runtime environment, identifying securi-
of the Software Development Lifecycle
ty vulnerabilities that might only become
(SDLC)
apparent during execution. Static Analy-
sis and Code Review are performed ear-
lier in the SDLC, and Acceptance Testing
is typically done after secure operations
to verify the system meets the require-
ments.
A. Risk Mitigation
B. Risk Avoidance
C. Risk Transference
D. Risk Acceptance
Correct Answer: C. Risk Transference
, Explanation: Risk Transference involves
shifting the impact of a risk to a third par-
3: Conducts Risk Management ty, often by using insurance or outsourc-
Which risk management approach in- ing certain activities. Risk Mitigation in-
volves the transfer of risk to another par- volves reducing the risk, Risk Avoidance
ty, such as through insurance involves eliminating the risk, and Risk
Acceptance involves acknowledging and
accepting the risk without further action.
A. Sarbanes-Oxley Act (SOX)
B. Health Insurance Portability and Ac-
countability Act (HIPAA)
C. Gramm-Leach-Bliley Act (GLBA)
D. Federal Information Security Manage-
4: Identifies Legal, Compliance, and Eth- ment Act (FISMA)
ical Concerns Correct Answer: B. Health Insur-
Which U.S. law focuses specifically on ance Portability and Accountability Act
the protection of personal health infor- (HIPAA)
mation Explanation: HIPAA sets standards for
the protection of personal health informa-
tion. SOX is related to corporate financial
practices, GLBA focuses on financial pri-
vacy, and FISMA applies to federal infor-
mation security management.
A. Software as a Service (SaaS)
B. Platform as a Service (PaaS)
C. Infrastructure as a Service (IaaS)
D. Containers as a Service (CaaS)
Correct Answer: C. Infrastructure as a
Service (IaaS)
5: Implements Secure Solutions
Explanation: In IaaS, the provider man-
Which cloud service model requires the
ages the underlying infrastructure, while
customer to manage the security of the
the customer is responsible for manag-
operating system, applications, and data
ing the security of the operating sys-
tem, applications, and data. In SaaS, the
provider manages everything, including
security. PaaS offers more management
of security, but the customer still handles
application security.
6: Implements Operations
What is the primary goal of implementing
a Disaster Recovery Plan (DRP) in cloud
