200 Practice...
WGU D488 Cybersecurity Architecture and Engineering – Objective Assessment
200 Practice Questions
Exam Overview
Feature Detail
Course D488 – Cybersecurity Architecture and Engineering (KFO1)
Institution Western Governors University (WGU)
Assessment Type Objective Assessment (OA) – Proctored
Primary Competencies Security Architecture, Security Engineering, Risk
Management, Identity & Access Management, Network Security, Cloud Security,
Security Operations
Alignment CISSP & CASP+ Competencies
Question Format Multiple-choice, scenario-based
SECTION 1: SECURITY ARCHITECTURE FRAMEWORKS & GOVERNANCE
Question 1
A company is developing a new mobile application to support external customers
and contractors. The application needs to allow users to sign in using third-party
social identities. What is the best protocol to use?
A) SAML
,B) Kerberos
C) LDAP
D) OAuth
Answer: D
Rationale: OAuth is the standard protocol for authorizing access to third-party
applications without revealing user credentials. It allows users to log in using
social identity providers like Google, Facebook, or LinkedIn. SAML is generally
used for enterprise SSO, Kerberos is for internal network authentication, and
LDAP is a directory access protocol .
Question 2
Which of the following is the first step in the risk management process according
to WGU Cybersecurity Architecture and Engineering?
A) Assess risks
B) Control risks
C) Identify potential risks
D) Review risks
,Answer: C
Rationale: The first step in risk management is identifying potential risks. Only
once risks are identified can they be assessed, controlled, and reviewed .
Question 3
A cybersecurity analyst conducted a vulnerability assessment and discovered
multiple vulnerabilities on the company's webpage. The CISO decided not to fix
the discrepancies due to the vulnerabilities being outside of the organization's
resources. Which risk mitigation strategy is demonstrated?
A) Accept
B) Mitigate
C) Avoid
D) Transfer
Answer: A
, Rationale: Risk acceptance means that an identified risk area has been evaluated
and results in an agreement to continue operating despite the identified risks. In
this scenario, the CISO chose not to fix the vulnerabilities, which constitutes risk
acceptance .
Question 4
What is the primary purpose of a Security Architecture framework (e.g., SABSA,
TOGAF)?
A) To provide a structured approach to designing and implementing security
controls
B) To replace all existing security measures
C) To eliminate the need for risk assessments
D) To focus solely on network security
Answer: A
Rationale: Security Architecture frameworks provide a structured, systematic
approach to designing, implementing, and managing security controls across an
enterprise. They help align security with business objectives .