▪ Spring Semester February 2026 WGU C845
Information Systems Security Objective
Assessment (OA) Exam Prep | Cybersecurity
Fundamentals, Risk Management, Network
Security, Threats & Vulnerabilities, Security
Controls, Cryptography Basics, Access Control,
Incident Response & Information Assurance Study
Guide with Practice Questions
, Question 1:
What is the primary purpose of an Intrusion Detection System (IDS)?
A) To prevent unauthorized access to a network
B) To monitor network traffic for suspicious activity
C) To encrypt data during transmission
D) To provide a firewall service
Correct Option: B) To monitor network traffic for suspicious activity
Rationale: An Intrusion Detection System is designed to monitor network traffic and
alert administrators about potential security breaches or suspicious activities. Unlike
firewalls that enforce access control, IDS focuses on detecting possible threats.
Question 2:
Which of the following is considered a physical security control?
A) Encryption protocols
B) Security cameras
C) Firewalls
D) Antivirus software
Correct Option: B) Security cameras
Rationale: Physical security controls are designed to protect the physical premises and
assets of an organization. Security cameras are used to monitor and record activities,
thereby deterring and documenting unauthorized access.
Question 3:
What is the principle of least privilege?
A) Users should have access to all system resources
B) Users should have just enough access rights to perform their job functions
C) Administrative privileges should be given liberally
D) All data should be shared with all employees
Correct Option: B) Users should have just enough access rights to perform their job
functions
Rationale: The principle of least privilege is a security concept where users are granted
the minimum levels of access—essential for their roles. This minimizes the risk of
accidental or malicious data breaches.
Question 4:
Information Systems Security Objective
Assessment (OA) Exam Prep | Cybersecurity
Fundamentals, Risk Management, Network
Security, Threats & Vulnerabilities, Security
Controls, Cryptography Basics, Access Control,
Incident Response & Information Assurance Study
Guide with Practice Questions
, Question 1:
What is the primary purpose of an Intrusion Detection System (IDS)?
A) To prevent unauthorized access to a network
B) To monitor network traffic for suspicious activity
C) To encrypt data during transmission
D) To provide a firewall service
Correct Option: B) To monitor network traffic for suspicious activity
Rationale: An Intrusion Detection System is designed to monitor network traffic and
alert administrators about potential security breaches or suspicious activities. Unlike
firewalls that enforce access control, IDS focuses on detecting possible threats.
Question 2:
Which of the following is considered a physical security control?
A) Encryption protocols
B) Security cameras
C) Firewalls
D) Antivirus software
Correct Option: B) Security cameras
Rationale: Physical security controls are designed to protect the physical premises and
assets of an organization. Security cameras are used to monitor and record activities,
thereby deterring and documenting unauthorized access.
Question 3:
What is the principle of least privilege?
A) Users should have access to all system resources
B) Users should have just enough access rights to perform their job functions
C) Administrative privileges should be given liberally
D) All data should be shared with all employees
Correct Option: B) Users should have just enough access rights to perform their job
functions
Rationale: The principle of least privilege is a security concept where users are granted
the minimum levels of access—essential for their roles. This minimizes the risk of
accidental or malicious data breaches.
Question 4:
