WGU D488 Final Exam Test Bank Latest Update 2026 Cybersecurity
Architecture and Engineering CURRENTLY MOST TESTED Questions
WITH 100% Correct Verified Answers Grade A+
The cybersecurity analyst at a software company conducted a vulnerability
assessment to identify potential security risks to the organization and discovered
multiple vulnerabilities on the company's webpage. The analyst then provided the
results to the chief information security officer (CISO), who then decided not to fix
the discrepancies due to the vulnerabilities being outside of the organization's
resources.
Which risk mitigation strategy is demonstrated in this scenario?
A) Accept
B) Mitigate
C) Avoid
D) Transfer - VERIFIED ANSWER✅ A) Accept
A network technician is setting up Extensible Authentication Protocol (EAP) but
wants to ensure using the strongest authentication and widely supported type.
Which type should the network technician choose?
A. PEAP (Protected Extensible Authentication Protocol)
,B. EAP-TLS (Extensible Authentication Protocol-Transport Layer Security)
C. EAP-TTLS (EAP Tunneled TLS)
D. EAP-FAST (EAP with Flexible Authentication via Secure Tunneling) - VERIFIED
ANSWER✅ B. EAP-TLS (Extensible Authentication Protocol-Transport Layer
Security)
A company wants to implement a policy to reduce the risk of unauthorized access
to sensitive information.
Which policy should be implemented?
A) Least privilege
B) Separation of duties
C) Job rotation
D) Data encryption - VERIFIED ANSWER✅ A) Least privilege
A company is developing a cybersecurity risk management program and wants to
establish metrics to measure the program's effectiveness.
What should the company consider?
A) Key performance indicators (KPIs)
,B) Key risk indicators (KRIs)
C) Risk appetite
D) Risk tolerance - VERIFIED ANSWER✅ A) Key performance indicators (KPIs)
The security team recently enabled public access to a web application hosted on a
server inside the corporate network. The developers of the application report that
the server has received several structured query language (SQL) injection attacks
in the past several days. The team needs to deploy a solution that will block the
SQL injection attacks.
Which solution fulfills these requirements?
A) Virtual private network (VPN)
B) Security information and event management (SIEM)
C) Web application firewall (WAF)
D) Secure Socket Shell (SSH) - VERIFIED ANSWER✅ C) Web application firewall
(WAF)
An IT security team has been notified that external contractors are using their
personal laptops to gain access to the corporate network. The team needs to
recommend a solution that will prevent unapproved devices from accessing the
network.
, Which solution fulfills these requirements?
A) Implementing a demilitarized zone (DMZ)
B) Installing a hardware security module
C) Implementing port security
D) Deploying a software firewall - VERIFIED ANSWER✅ C) Implementing port
security
The chief technology officer for a small publishing company has been tasked with
improving the company's security posture. As part of a network upgrade, the
company has decided to implement intrusion detection, spam filtering, content
filtering, and antivirus controls. The project needs to be completed using the least
amount of infrastructure while meeting all requirements.
Which solution fulfills these requirements?
A) Deploying an anti-spam gateway
B) Deploying a proxy server
C) Deploying a unified threat management (UTM) appliance
D) Deploying a web application firewall (WAF) - VERIFIED ANSWER✅ C) Deploying
a unified threat management (UTM) appliance
Architecture and Engineering CURRENTLY MOST TESTED Questions
WITH 100% Correct Verified Answers Grade A+
The cybersecurity analyst at a software company conducted a vulnerability
assessment to identify potential security risks to the organization and discovered
multiple vulnerabilities on the company's webpage. The analyst then provided the
results to the chief information security officer (CISO), who then decided not to fix
the discrepancies due to the vulnerabilities being outside of the organization's
resources.
Which risk mitigation strategy is demonstrated in this scenario?
A) Accept
B) Mitigate
C) Avoid
D) Transfer - VERIFIED ANSWER✅ A) Accept
A network technician is setting up Extensible Authentication Protocol (EAP) but
wants to ensure using the strongest authentication and widely supported type.
Which type should the network technician choose?
A. PEAP (Protected Extensible Authentication Protocol)
,B. EAP-TLS (Extensible Authentication Protocol-Transport Layer Security)
C. EAP-TTLS (EAP Tunneled TLS)
D. EAP-FAST (EAP with Flexible Authentication via Secure Tunneling) - VERIFIED
ANSWER✅ B. EAP-TLS (Extensible Authentication Protocol-Transport Layer
Security)
A company wants to implement a policy to reduce the risk of unauthorized access
to sensitive information.
Which policy should be implemented?
A) Least privilege
B) Separation of duties
C) Job rotation
D) Data encryption - VERIFIED ANSWER✅ A) Least privilege
A company is developing a cybersecurity risk management program and wants to
establish metrics to measure the program's effectiveness.
What should the company consider?
A) Key performance indicators (KPIs)
,B) Key risk indicators (KRIs)
C) Risk appetite
D) Risk tolerance - VERIFIED ANSWER✅ A) Key performance indicators (KPIs)
The security team recently enabled public access to a web application hosted on a
server inside the corporate network. The developers of the application report that
the server has received several structured query language (SQL) injection attacks
in the past several days. The team needs to deploy a solution that will block the
SQL injection attacks.
Which solution fulfills these requirements?
A) Virtual private network (VPN)
B) Security information and event management (SIEM)
C) Web application firewall (WAF)
D) Secure Socket Shell (SSH) - VERIFIED ANSWER✅ C) Web application firewall
(WAF)
An IT security team has been notified that external contractors are using their
personal laptops to gain access to the corporate network. The team needs to
recommend a solution that will prevent unapproved devices from accessing the
network.
, Which solution fulfills these requirements?
A) Implementing a demilitarized zone (DMZ)
B) Installing a hardware security module
C) Implementing port security
D) Deploying a software firewall - VERIFIED ANSWER✅ C) Implementing port
security
The chief technology officer for a small publishing company has been tasked with
improving the company's security posture. As part of a network upgrade, the
company has decided to implement intrusion detection, spam filtering, content
filtering, and antivirus controls. The project needs to be completed using the least
amount of infrastructure while meeting all requirements.
Which solution fulfills these requirements?
A) Deploying an anti-spam gateway
B) Deploying a proxy server
C) Deploying a unified threat management (UTM) appliance
D) Deploying a web application firewall (WAF) - VERIFIED ANSWER✅ C) Deploying
a unified threat management (UTM) appliance
