D488 | D488 Cybersecurity Architecture and
Engineering Exam 4 Version 2 | Questions with
Correct Answers and Expert Explanation for Each
Question | WGU
1. Which component of GRC focuses on the oversight and decision-making processes
that ensure IT activities align with business goals?
A. Compliance
B. Governance
C. Risk Management
D. Auditing
Correct Answer: B
Expert Explanation: Governance provides the structure through which
organizational objectives are set and monitored. It ensures that security strategies
align with the overall business mission and risk appetite. This process involves
senior leadership making informed decisions based on accurate reporting. Without
strong governance, security initiatives often become fragmented and lose strategic
focus. It serves as the foundation for both risk management and compliance
activities.
,2. When an organization uses insurance to shift the financial impact of a potential
data breach to a third party, which risk treatment strategy is being applied?
A. Risk Acceptance
B. Risk Mitigation
C. Risk Avoidance
D. Risk Transfer
Correct Answer: D
Expert Explanation: Risk transfer involves shifting the burden of a loss to another
entity, typically an insurance provider. This strategy does not eliminate the risk but
reduces the financial liability of the organization. It is commonly used when the cost
of mitigation exceeds the potential loss. Organizations must carefully evaluate policy
terms to ensure adequate coverage is provided. This approach is a standard part of a
comprehensive risk management program.
3. According to the NIST Cybersecurity Framework, which function involves developing
and implementing appropriate activities to identify the occurrence of a cybersecurity
event?
A. Protect
B. Respond
,C. Detect
D. Recover
Correct Answer: C
Expert Explanation: The Detect function is designed to enable the timely discovery
of cybersecurity events within an environment. It includes activities such as
continuous monitoring and anomaly detection to identify threats quickly. Rapid
detection is critical for minimizing the impact of a security incident on operations.
This function provides the necessary visibility into the network and system health.
Effective detection mechanisms are essential for triggering the response and
recovery phases.
4. Which ISO standard provides a framework for establishing, implementing,
maintaining, and continually improving an Information Security Management System
(ISMS)?
A. ISO 27001
B. ISO 27002
C. ISO 31000
D. ISO 9001
Correct Answer: A
, Expert Explanation: ISO 27001 is the primary international standard for
information security management systems. It outlines a risk-based approach to
managing sensitive company information and ensuring its security. The standard
requires organizations to implement a suite of controls tailored to their specific
risks. Achieving certification demonstrates a high level of commitment to security
best practices. Continuous improvement and regular internal audits are mandatory
components of this framework.
5. What is the primary difference between a security policy and a security standard?
A. Standards are optional guidelines, while policies are legally binding
requirements.
B. Policies are high-level statements of intent, while standards are mandatory rules
for implementation.
C. Policies provide technical details, while standards focus on organizational goals.
D. Standards are set by the government, while policies are internal to the company.
Correct Answer: B
Expert Explanation: Security policies define the high-level goals and management’s
expectations for cybersecurity. Standards provide the mandatory specific
requirements or configurations needed to achieve those policy goals. While a policy
might state that passwords must be strong, a standard specifies the exact length and
Engineering Exam 4 Version 2 | Questions with
Correct Answers and Expert Explanation for Each
Question | WGU
1. Which component of GRC focuses on the oversight and decision-making processes
that ensure IT activities align with business goals?
A. Compliance
B. Governance
C. Risk Management
D. Auditing
Correct Answer: B
Expert Explanation: Governance provides the structure through which
organizational objectives are set and monitored. It ensures that security strategies
align with the overall business mission and risk appetite. This process involves
senior leadership making informed decisions based on accurate reporting. Without
strong governance, security initiatives often become fragmented and lose strategic
focus. It serves as the foundation for both risk management and compliance
activities.
,2. When an organization uses insurance to shift the financial impact of a potential
data breach to a third party, which risk treatment strategy is being applied?
A. Risk Acceptance
B. Risk Mitigation
C. Risk Avoidance
D. Risk Transfer
Correct Answer: D
Expert Explanation: Risk transfer involves shifting the burden of a loss to another
entity, typically an insurance provider. This strategy does not eliminate the risk but
reduces the financial liability of the organization. It is commonly used when the cost
of mitigation exceeds the potential loss. Organizations must carefully evaluate policy
terms to ensure adequate coverage is provided. This approach is a standard part of a
comprehensive risk management program.
3. According to the NIST Cybersecurity Framework, which function involves developing
and implementing appropriate activities to identify the occurrence of a cybersecurity
event?
A. Protect
B. Respond
,C. Detect
D. Recover
Correct Answer: C
Expert Explanation: The Detect function is designed to enable the timely discovery
of cybersecurity events within an environment. It includes activities such as
continuous monitoring and anomaly detection to identify threats quickly. Rapid
detection is critical for minimizing the impact of a security incident on operations.
This function provides the necessary visibility into the network and system health.
Effective detection mechanisms are essential for triggering the response and
recovery phases.
4. Which ISO standard provides a framework for establishing, implementing,
maintaining, and continually improving an Information Security Management System
(ISMS)?
A. ISO 27001
B. ISO 27002
C. ISO 31000
D. ISO 9001
Correct Answer: A
, Expert Explanation: ISO 27001 is the primary international standard for
information security management systems. It outlines a risk-based approach to
managing sensitive company information and ensuring its security. The standard
requires organizations to implement a suite of controls tailored to their specific
risks. Achieving certification demonstrates a high level of commitment to security
best practices. Continuous improvement and regular internal audits are mandatory
components of this framework.
5. What is the primary difference between a security policy and a security standard?
A. Standards are optional guidelines, while policies are legally binding
requirements.
B. Policies are high-level statements of intent, while standards are mandatory rules
for implementation.
C. Policies provide technical details, while standards focus on organizational goals.
D. Standards are set by the government, while policies are internal to the company.
Correct Answer: B
Expert Explanation: Security policies define the high-level goals and management’s
expectations for cybersecurity. Standards provide the mandatory specific
requirements or configurations needed to achieve those policy goals. While a policy
might state that passwords must be strong, a standard specifies the exact length and
