WGU D430 Practice Test 2026 | Verified Answers |
Exam Prep
1. A distributed denial of service (DDoS) attack overwhelms a popular e-
commerce website, causing it to become inaccessible to users. Which
element of the CIA Triad is directly impacted?
Confidentiality
Integrity
Authentication
Availability
2. Which security solution can an organization deploy to prevent unauthorized
external access to its internal network?
VPN
IDS
Firewall
Sniffer
3. Your company wants to secure the new data center physically. The company
has hired a security guard but wants to find a way so that only one person at
a time can enter the data center. As people enter, they will have to show the
security guard identification that authorizes them to enter the data center.
What is your company's new security called?
Theft prevention
Security outpost
Entry control roster
Mantrap
,4. What is the name of the U.S. law that establishes security standards for
federal agencies?
Gramm-Leach-Bliley Act (GLBA)
Health Insurance Portability and Accountability Act (HIPAA)
Payment Card Industry Data Security Standard (PCI DSS)
Federal Information Security Management Act (FISMA)
5. Your organization has several home users with Internet access who require
remote access to your organization's network. Which of the following remote
access and authentication technologies would be the most secure?
Telnet access to a local password database
Wireless access to an LDAPS server
Dial-up access to a Kerberos server
A VPN authenticated to a RADIUS server
6. How does the European Union Directive 95/46/EC regulation contribute to
the principles of confidentiality and integrity in cybersecurity?
It establishes guidelines for the protection of personal data,
ensuring that individuals' information is kept confidential and
accurate.
It requires organizations to disclose all data breaches to the public.
It allows for unrestricted access to personal data by third parties.
It mandates the use of encryption for all online transactions.
7. What is the primary purpose of data encryption in cybersecurity policies?
To protect the confidentiality of information during transmission.
, To ensure data integrity during storage.
To facilitate user authentication processes.
To comply with regulatory standards.
8. At a small company, an employee makes an unauthorized data alteration.
Which component of the CIA triad has been compromised?
Availability
Integrity
Authenticity
Confidentiality
9. Which component of the CIA Triad is the DoS attack intended to defeat?
Confidentiality
Integrity
Availability
Control
10. A major clothing company recently lost a large amount of proprietary
information. The security officer must find a solution to ensure this never
happens again. Which of the following is the BEST technical implementation
to prevent this from happening again?
Mandate job rotation
Enable role-based access controls
Implement content filters
Disable peer-to-peer sharing
Configure DLP solutions
, 11. If an organization experiences a breach due to weak user authentication,
what immediate action should they take to mitigate future risks?
Reduce the frequency of password changes.
Eliminate user authentication altogether.
Implement stronger user authentication measures, such as multi-
factor authentication.
Increase the number of users with administrative access.
12. A student downloads free software from a website and this software
includes some malware. Which tool can locate this vulnerability?
Access control list
Antivirus software
Honeypot
Asymmetric encryption
13. What is the primary purpose of network mapping tools in cybersecurity?
To ensure compliance with cybersecurity regulations.
To encrypt data transmitted over the network.
To authenticate users accessing the network.
To identify devices and their operating systems on a network.
14. A petroleum company has a group of computers used to monitor flow of
materials in the refining process. These computers are never connected to
the Internet or other corporate network, and they host proprietary
monitoring software which the company has registered as a trade secret.
Which type of security will be able to help protect its software against theft?
Exam Prep
1. A distributed denial of service (DDoS) attack overwhelms a popular e-
commerce website, causing it to become inaccessible to users. Which
element of the CIA Triad is directly impacted?
Confidentiality
Integrity
Authentication
Availability
2. Which security solution can an organization deploy to prevent unauthorized
external access to its internal network?
VPN
IDS
Firewall
Sniffer
3. Your company wants to secure the new data center physically. The company
has hired a security guard but wants to find a way so that only one person at
a time can enter the data center. As people enter, they will have to show the
security guard identification that authorizes them to enter the data center.
What is your company's new security called?
Theft prevention
Security outpost
Entry control roster
Mantrap
,4. What is the name of the U.S. law that establishes security standards for
federal agencies?
Gramm-Leach-Bliley Act (GLBA)
Health Insurance Portability and Accountability Act (HIPAA)
Payment Card Industry Data Security Standard (PCI DSS)
Federal Information Security Management Act (FISMA)
5. Your organization has several home users with Internet access who require
remote access to your organization's network. Which of the following remote
access and authentication technologies would be the most secure?
Telnet access to a local password database
Wireless access to an LDAPS server
Dial-up access to a Kerberos server
A VPN authenticated to a RADIUS server
6. How does the European Union Directive 95/46/EC regulation contribute to
the principles of confidentiality and integrity in cybersecurity?
It establishes guidelines for the protection of personal data,
ensuring that individuals' information is kept confidential and
accurate.
It requires organizations to disclose all data breaches to the public.
It allows for unrestricted access to personal data by third parties.
It mandates the use of encryption for all online transactions.
7. What is the primary purpose of data encryption in cybersecurity policies?
To protect the confidentiality of information during transmission.
, To ensure data integrity during storage.
To facilitate user authentication processes.
To comply with regulatory standards.
8. At a small company, an employee makes an unauthorized data alteration.
Which component of the CIA triad has been compromised?
Availability
Integrity
Authenticity
Confidentiality
9. Which component of the CIA Triad is the DoS attack intended to defeat?
Confidentiality
Integrity
Availability
Control
10. A major clothing company recently lost a large amount of proprietary
information. The security officer must find a solution to ensure this never
happens again. Which of the following is the BEST technical implementation
to prevent this from happening again?
Mandate job rotation
Enable role-based access controls
Implement content filters
Disable peer-to-peer sharing
Configure DLP solutions
, 11. If an organization experiences a breach due to weak user authentication,
what immediate action should they take to mitigate future risks?
Reduce the frequency of password changes.
Eliminate user authentication altogether.
Implement stronger user authentication measures, such as multi-
factor authentication.
Increase the number of users with administrative access.
12. A student downloads free software from a website and this software
includes some malware. Which tool can locate this vulnerability?
Access control list
Antivirus software
Honeypot
Asymmetric encryption
13. What is the primary purpose of network mapping tools in cybersecurity?
To ensure compliance with cybersecurity regulations.
To encrypt data transmitted over the network.
To authenticate users accessing the network.
To identify devices and their operating systems on a network.
14. A petroleum company has a group of computers used to monitor flow of
materials in the refining process. These computers are never connected to
the Internet or other corporate network, and they host proprietary
monitoring software which the company has registered as a trade secret.
Which type of security will be able to help protect its software against theft?
