Page 1 of 117
Cybersecurity-architecture-and-engineering
wgu cybersecurity architecture and
engineering (kfo1/d488) –Question Study
Guide with Answers & Full Explanations |
PDF. –Question Study Guide with Answers
& Full Explanations | PDF.
Q1. The NIST Cybersecurity Framework (CSF) consists of five
core functions. Which of the following is NOT one of these
functions?
A) Identify
B) Protect
C) Detect
D) Audit
,Page 2 of 117
E) Respond
F) Recover
Answer: D. Audit
Rationale: The NIST CSF core functions are Identify, Protect,
Detect, Respond, and Recover. Audit is not a core function but
rather a control activity that spans multiple functions. The
framework was developed to provide a common language for
managing cybersecurity risk across organizations of all sizes.
Q2. Which NIST Cybersecurity Framework function involves
developing and implementing appropriate safeguards to
ensure delivery of critical services?
A) Identify
B) Protect
C) Detect
D) Respond
,Page 3 of 117
Answer: B. Protect
Rationale: The Protect function supports the ability to limit or
contain the impact of a potential cybersecurity event. It includes
identity management and access control, awareness training,
data security, and protective technology. The Protect function is
essential for implementing proactive security measures before
incidents occur.
Q3. In the SABSA framework, which layer addresses the
business requirements and defines the business drivers?
A) Contextual Architecture
B) Conceptual Architecture
C) Logical Architecture
D) Physical Architecture
Answer: A. Contextual Architecture
, Page 4 of 117
Rationale: SABSA (Sherwood Applied Business Security
Architecture) uses a layered approach. The Contextual
Architecture layer addresses business requirements, defining the
business context, drivers, and objectives that drive security
architecture decisions. This business-first approach distinguishes
SABSA from purely technical frameworks.
Q4. The TOGAF Architecture Development Method (ADM)
includes all of the following phases EXCEPT:
A) Architecture Vision
B) Business Architecture
C) Technology Architecture
D) Security Implementation
Answer: D. Security Implementation
Rationale: TOGAF ADM phases include Architecture Vision,
Business Architecture, Information Systems Architecture,
Cybersecurity-architecture-and-engineering
wgu cybersecurity architecture and
engineering (kfo1/d488) –Question Study
Guide with Answers & Full Explanations |
PDF. –Question Study Guide with Answers
& Full Explanations | PDF.
Q1. The NIST Cybersecurity Framework (CSF) consists of five
core functions. Which of the following is NOT one of these
functions?
A) Identify
B) Protect
C) Detect
D) Audit
,Page 2 of 117
E) Respond
F) Recover
Answer: D. Audit
Rationale: The NIST CSF core functions are Identify, Protect,
Detect, Respond, and Recover. Audit is not a core function but
rather a control activity that spans multiple functions. The
framework was developed to provide a common language for
managing cybersecurity risk across organizations of all sizes.
Q2. Which NIST Cybersecurity Framework function involves
developing and implementing appropriate safeguards to
ensure delivery of critical services?
A) Identify
B) Protect
C) Detect
D) Respond
,Page 3 of 117
Answer: B. Protect
Rationale: The Protect function supports the ability to limit or
contain the impact of a potential cybersecurity event. It includes
identity management and access control, awareness training,
data security, and protective technology. The Protect function is
essential for implementing proactive security measures before
incidents occur.
Q3. In the SABSA framework, which layer addresses the
business requirements and defines the business drivers?
A) Contextual Architecture
B) Conceptual Architecture
C) Logical Architecture
D) Physical Architecture
Answer: A. Contextual Architecture
, Page 4 of 117
Rationale: SABSA (Sherwood Applied Business Security
Architecture) uses a layered approach. The Contextual
Architecture layer addresses business requirements, defining the
business context, drivers, and objectives that drive security
architecture decisions. This business-first approach distinguishes
SABSA from purely technical frameworks.
Q4. The TOGAF Architecture Development Method (ADM)
includes all of the following phases EXCEPT:
A) Architecture Vision
B) Business Architecture
C) Technology Architecture
D) Security Implementation
Answer: D. Security Implementation
Rationale: TOGAF ADM phases include Architecture Vision,
Business Architecture, Information Systems Architecture,
