1|Page
WGU D488 OA Final Exam Test Bank/WGU D488
Cybersecurity Architecture & Engineering Newest
2025/ 2026 Complete All 230 Questions And Correct
Detailed Answers |Already Graded A+||Already Graded
A+||Latest Exam!!!
A security team has been tasked with mitigating the risk of
stolen credentials after a recent breach. The solution must
isolate the use of privileged accounts. In the future,
administrators must request access to mission-critical
services before they can perform their tasks. What is the
best solution? - Answer-Privileged access management
(PAM)
An IT security team has been notified that external
contractors are using their personal laptops to gain access
to the corporate network. The team needs to recommend
a solution that will prevent unapproved devices from
accessing the network. Which solution fulfills these
requirements? - Answer-Implementing port security
A healthcare company needs to ensure that medical
researchers cannot inadvertently share protected health
information (PHI) data from medical records. What is the
best solution? - Answer-Anonymization
,2|Page
The security operations center (SOC) team just received a
notification that multiple vulnerabilities are present in the
codebase of a corporate application. Which threat type is
most likely in this scenario? - Answer-Supply chain
The security operations center (SOC) team for a global
company is planning an initiative to defend against
security breaches. Leadership wants the team to monitor
for threats against the organization's data, credentials, and
brand reputation by scanning networks that can not be
accessed via search engines. Which type of network
should be scanned based on the requirements? - Answer-
Deep web
A company operates a customer service call center with
over one hundred agents taking inbound sales calls. After
a recent security breach, the security team believes that
one or more agents have been stealing customer credit
card details. Which solution will defend against this issue?
- Answer-Data loss prevention (DLP)
The security team has noticed that several endpoints on
the network have been infected with malware. Leadership
,3|Page
has tasked the security team with identifying these attacks
in the future. Which solution will notify the team
automatically in the event of future malware variants
invading the network? - Answer-Antivirus alerts
A financial services company has experienced several
incidents of data breaches in recent months. The company
has analyzed the indicators of compromise and
determined that the data breaches were caused by insider
threats. The company has decided to implement
hardening techniques and endpoint security controls to
mitigate the risk. What should be used to prevent data
breaches caused by insider threats based on the
indicators of compromise? - Answer-Data loss prevention
(DLP)
A company is developing a cybersecurity risk
management program and wants to establish metrics to
measure the program's effectiveness. What should the
company consider? - Answer-Key performance indicators
(KPIs)
A marketing agency has discovered a known vulnerability
in its web content management system. The system
contains a large number of obsolete and insecure
, 4|Page
snapshots of virtual machines, which can potentially be
exploited by attackers to compromise the web content
management system. The agency has decided to
implement hardening techniques and endpoint security
controls to mitigate the risk. Which technique will meet the
needs of this agency? - Answer-Removing outdated and
unsecured images and templates
A financial institution is concerned about the potential risks
associated with unauthorized access to sensitive data on
its servers. The company has decided to implement
hardening techniques and endpoint security controls to
mitigate the risk. Which technique will provide a secure
operating system with access controls for user
applications? - Answer-SELinux
Which public-key cryptosystem uses prime factorization as
the basis for its security? - Answer-Rivest-Shamir-
Adleman (RSA)
Which key exchange algorithm is used to establish a
shared secret key between two parties without the need
for a pre-shared secret or public key exchange? - Answer-
Diffie-Hellman (DH)
WGU D488 OA Final Exam Test Bank/WGU D488
Cybersecurity Architecture & Engineering Newest
2025/ 2026 Complete All 230 Questions And Correct
Detailed Answers |Already Graded A+||Already Graded
A+||Latest Exam!!!
A security team has been tasked with mitigating the risk of
stolen credentials after a recent breach. The solution must
isolate the use of privileged accounts. In the future,
administrators must request access to mission-critical
services before they can perform their tasks. What is the
best solution? - Answer-Privileged access management
(PAM)
An IT security team has been notified that external
contractors are using their personal laptops to gain access
to the corporate network. The team needs to recommend
a solution that will prevent unapproved devices from
accessing the network. Which solution fulfills these
requirements? - Answer-Implementing port security
A healthcare company needs to ensure that medical
researchers cannot inadvertently share protected health
information (PHI) data from medical records. What is the
best solution? - Answer-Anonymization
,2|Page
The security operations center (SOC) team just received a
notification that multiple vulnerabilities are present in the
codebase of a corporate application. Which threat type is
most likely in this scenario? - Answer-Supply chain
The security operations center (SOC) team for a global
company is planning an initiative to defend against
security breaches. Leadership wants the team to monitor
for threats against the organization's data, credentials, and
brand reputation by scanning networks that can not be
accessed via search engines. Which type of network
should be scanned based on the requirements? - Answer-
Deep web
A company operates a customer service call center with
over one hundred agents taking inbound sales calls. After
a recent security breach, the security team believes that
one or more agents have been stealing customer credit
card details. Which solution will defend against this issue?
- Answer-Data loss prevention (DLP)
The security team has noticed that several endpoints on
the network have been infected with malware. Leadership
,3|Page
has tasked the security team with identifying these attacks
in the future. Which solution will notify the team
automatically in the event of future malware variants
invading the network? - Answer-Antivirus alerts
A financial services company has experienced several
incidents of data breaches in recent months. The company
has analyzed the indicators of compromise and
determined that the data breaches were caused by insider
threats. The company has decided to implement
hardening techniques and endpoint security controls to
mitigate the risk. What should be used to prevent data
breaches caused by insider threats based on the
indicators of compromise? - Answer-Data loss prevention
(DLP)
A company is developing a cybersecurity risk
management program and wants to establish metrics to
measure the program's effectiveness. What should the
company consider? - Answer-Key performance indicators
(KPIs)
A marketing agency has discovered a known vulnerability
in its web content management system. The system
contains a large number of obsolete and insecure
, 4|Page
snapshots of virtual machines, which can potentially be
exploited by attackers to compromise the web content
management system. The agency has decided to
implement hardening techniques and endpoint security
controls to mitigate the risk. Which technique will meet the
needs of this agency? - Answer-Removing outdated and
unsecured images and templates
A financial institution is concerned about the potential risks
associated with unauthorized access to sensitive data on
its servers. The company has decided to implement
hardening techniques and endpoint security controls to
mitigate the risk. Which technique will provide a secure
operating system with access controls for user
applications? - Answer-SELinux
Which public-key cryptosystem uses prime factorization as
the basis for its security? - Answer-Rivest-Shamir-
Adleman (RSA)
Which key exchange algorithm is used to establish a
shared secret key between two parties without the need
for a pre-shared secret or public key exchange? - Answer-
Diffie-Hellman (DH)
