WGU D488 - CYBERSECURITY ARCHITECTURE & ENGINEERING
D488 - Cybersecurity Architecture & Engineering
EXAM QUESTIONS AND ANSWERS (VERIFIED AND WELL DETAILED
Study online at https://quizlet.com/_gpe060
A
1. Which type of security C - Virtual Local Area Network (VLAN)
should a business use on
its layer 2 switch to iso- VLANs allow companies to logically segment network traffic, ensuring
late the finance network devices on different VLANs cannot communicate unless otherwise
from other departmental specified in a layer 3 device like a router.
networks?
A - Virtual Private Net-
work (VPN)
B - Internet Protocol Se-
curity (IPSec)
C - Virtual Local Area Net-
work (VLAN)
D - Remotely Triggered
Black Hole (RTBH)
2. Which type of software A - Regression Testing
testing should be used
when there has been a Regression testing ensures that recent changes within the environ-
change within the exist- ment have not introduced new defects or broken existing functional-
ing environment? ity.
A - Regression Testing
B - Penetration Testing
C - Requirements Testing
D - Release Testing
3. Which security technique B - Password Auditing
should be used to detect
a weak password that Password auditing allows for existing passwords to be compared
may match common dic- against known weak passwords to help determine the security of a
tionary words? credential.
A - Password Spraying
B - Password Auditing
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
C - Password Guessing
D - Password History
4. What should an organiza- A - Multi-factor authentication
tion implement if it wants
users of their site to pro- MFA enhances security by requiring multiple forms of authentication,
vide a password, memo- therefore reducing the risk of unauthorized access.
rable word, and pin?
A - Multi-factor authenti-
cation (MFA)
B - Two-factor authenti-
cation (2FA)
C - Two-step verification
D - Single-factor authenti-
cation
5. A network technician is B - Firewall rules
asked by their manag-
er to update security to Firewall rules can be set up to deny traffic coming from known mali-
block several known bad cious IP addresses.
actor IP addresses.
A - Signature rules
B - Firewall rules
C - Behavior rules
D - Data loss prevention
(DLP) rules
6. On a shopping website, D - Race Condition
there is a 500-millisec-
ond delay when the au- A race condition occurs when multiple processes or actions are exe-
thorized payment button cuted simultaneously, and the outcome depends on the sequence or
is selected for purchases. timing of events.
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
Attackers have been run-
ning a script to alter the
final payment that takes
200 milliseconds. Which
vulnerability on the web-
site is being targeted by
the attackers?
A - Buffer Overflow
B - Integer Overflow
C - Broken Authentica-
tion
D - Race Condition
7. A company wants to pro- D - Whitelisting
vide laptops to its em-
ployees so they can work Whitelisting ensures that only approved applications can be installed
remotely. What should and executed on company laptops.
be implemented to en-
sure only work applica-
tions can be installed on
company laptops?
A - Containerization
B - Token-based access
C - Patch repository
D - Whitelisting
8. What should a business C - S/MIME (Secure/Multipurpose Internet Mail Extensions)
use to provide non-re-
pudiation for emails be- S/MIME provides non-repudiation for emails by using digital signa-
tween employees? tures.
A - TLS/SSL
B - AES-256
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
C - S/MIME
D - IPSec
9. Which strategy is appro- B - Gap assessment
priate for a risk manage-
ment team to determine A gap assessment identifies the gaps between the current security
if a business has insuffi- control and the desired or required levels of security.
cient security controls?
A - Qualitative assess-
ment
B - Gap assessment
C - Quantitative risk as-
sessment
D - Impact assessment
10. An organization has B - Warm site
leased office space that is
suitable for its computer A warm site is a disaster recovery site that provides a partially
equipment so personnel equipped facility that can be used to restore critical operations faster
and systems can be re- than having no equipment at all.
located if the main office
location is unavailable.
It currently has some
equipment. Which type
of site is the organization
using?
A - Cold site
B - Warm site
C - Hot site
D - Mobile site
11. A & C; VLANs & Physical
D488 - Cybersecurity Architecture & Engineering
EXAM QUESTIONS AND ANSWERS (VERIFIED AND WELL DETAILED
Study online at https://quizlet.com/_gpe060
A
1. Which type of security C - Virtual Local Area Network (VLAN)
should a business use on
its layer 2 switch to iso- VLANs allow companies to logically segment network traffic, ensuring
late the finance network devices on different VLANs cannot communicate unless otherwise
from other departmental specified in a layer 3 device like a router.
networks?
A - Virtual Private Net-
work (VPN)
B - Internet Protocol Se-
curity (IPSec)
C - Virtual Local Area Net-
work (VLAN)
D - Remotely Triggered
Black Hole (RTBH)
2. Which type of software A - Regression Testing
testing should be used
when there has been a Regression testing ensures that recent changes within the environ-
change within the exist- ment have not introduced new defects or broken existing functional-
ing environment? ity.
A - Regression Testing
B - Penetration Testing
C - Requirements Testing
D - Release Testing
3. Which security technique B - Password Auditing
should be used to detect
a weak password that Password auditing allows for existing passwords to be compared
may match common dic- against known weak passwords to help determine the security of a
tionary words? credential.
A - Password Spraying
B - Password Auditing
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
C - Password Guessing
D - Password History
4. What should an organiza- A - Multi-factor authentication
tion implement if it wants
users of their site to pro- MFA enhances security by requiring multiple forms of authentication,
vide a password, memo- therefore reducing the risk of unauthorized access.
rable word, and pin?
A - Multi-factor authenti-
cation (MFA)
B - Two-factor authenti-
cation (2FA)
C - Two-step verification
D - Single-factor authenti-
cation
5. A network technician is B - Firewall rules
asked by their manag-
er to update security to Firewall rules can be set up to deny traffic coming from known mali-
block several known bad cious IP addresses.
actor IP addresses.
A - Signature rules
B - Firewall rules
C - Behavior rules
D - Data loss prevention
(DLP) rules
6. On a shopping website, D - Race Condition
there is a 500-millisec-
ond delay when the au- A race condition occurs when multiple processes or actions are exe-
thorized payment button cuted simultaneously, and the outcome depends on the sequence or
is selected for purchases. timing of events.
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
Attackers have been run-
ning a script to alter the
final payment that takes
200 milliseconds. Which
vulnerability on the web-
site is being targeted by
the attackers?
A - Buffer Overflow
B - Integer Overflow
C - Broken Authentica-
tion
D - Race Condition
7. A company wants to pro- D - Whitelisting
vide laptops to its em-
ployees so they can work Whitelisting ensures that only approved applications can be installed
remotely. What should and executed on company laptops.
be implemented to en-
sure only work applica-
tions can be installed on
company laptops?
A - Containerization
B - Token-based access
C - Patch repository
D - Whitelisting
8. What should a business C - S/MIME (Secure/Multipurpose Internet Mail Extensions)
use to provide non-re-
pudiation for emails be- S/MIME provides non-repudiation for emails by using digital signa-
tween employees? tures.
A - TLS/SSL
B - AES-256
, D488 - Cybersecurity Architecture & Engineering
Study online at https://quizlet.com/_gpe060
C - S/MIME
D - IPSec
9. Which strategy is appro- B - Gap assessment
priate for a risk manage-
ment team to determine A gap assessment identifies the gaps between the current security
if a business has insuffi- control and the desired or required levels of security.
cient security controls?
A - Qualitative assess-
ment
B - Gap assessment
C - Quantitative risk as-
sessment
D - Impact assessment
10. An organization has B - Warm site
leased office space that is
suitable for its computer A warm site is a disaster recovery site that provides a partially
equipment so personnel equipped facility that can be used to restore critical operations faster
and systems can be re- than having no equipment at all.
located if the main office
location is unavailable.
It currently has some
equipment. Which type
of site is the organization
using?
A - Cold site
B - Warm site
C - Hot site
D - Mobile site
11. A & C; VLANs & Physical
