WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
Whichutwoupasswordsuareutheuweakest?
A. Pa$$w0Rd%^78
B. Love@$MySon80
C. C@1Il@VEm1
D. Password1234u-uanswer-BD
Whichutwousecureumethodsushouldubeuusedutoukeeputrackuofupasswords?
A. Encryptutextufilesuofuthemuonutheuuser'suworkstation
B. Storeuthemuonuaustickyunoteuinuauconvenientuspot
C. Shareuthemuwithuautrustedumanageruorucoworker
D. Organization-approvedupasswordustorageusoftwareu-uanswer-AD
Whichugroupsutypicallyureportutoutheuchiefusecurityuofficeru(CSO)?
A. Securityuengineeringuanduoperations
B. Physicaluandusoftwareusecurity
C. Audituanduincidenturesponse
D. Facilitiesuanduinformationutechnologyufunctionsu-uanswer-A
Aucompanyuisuconsideringuwhichucontrolsutoubuyutouprotectuanuasset.
Whatushouldutheupriceuofutheucontrolsubeuinurelationutoutheucostuofutheuasset?
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
A. Lessuthanutheuannualulossuexpectancy
B. Moreuthanutheuannualulossuexpectancy
C. Equalutoutheucostuofutheuasset
D. Moreuthanutheucostuofutheuassetu-uanswer-A
Howumanyukeysuareuuseduinuasymmetricuencryption?
A. Noukeysuareuusedutouencryptuandudecryptuaumessage.
B. Oneukeyuisuusedutouencryptuandudecryptuaumessage.
C. Twoukeysuareuusedutouencryptuandudecryptuaumessage.
D. Threeukeysuareuusedutouencryptuandudecryptuaumessage.u-uanswer-C
Whichuprotocoluisuauvariantuofuaustandarduwebutransferuprotocoluthatuaddsuaulayeruofusecurityuonutheudat
auinutransituusinguausecureusocketulayer?
A. HTTPS
B. HTTP
C. FTP
D. SFTPu-uanswer-A
Whichudescriptionucharacterizesusymmetricucryptography?
A. Theusameukeyuisuusedutoulockuanduunlockutheucipher.
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
B. Twouseparateubutuunrelatedukeysuareuusedutouunlockutheucipher.
C. Twouseparateuandurelatedukeysuareuusedutouunlockutheucipher.
D. Keysuareuunnecessaryuwhenuusingusymmetricucryptographyutouunlockuaucipher.u-uanswer-A
Anuemployeeuusesuausecureuhashingualgorithmuforumessageuintegrity.uTheuemployeeusendsuauplainutextu
messageuwithutheuembeddeduhashutouaucolleague.uAurogueudeviceureceivesuanduretransmitsutheumessage
utouitsudestination.uOnceureceiveduanducheckedubyutheuintendedurecipient,utheuhashesudounotumatch.
WhichuSTRIDEuconceptuhasubeenuviolated?
A. Tampering
B. Repudiation
C. Elevationuofuprivilege
D. Denial-of-serviceu-uanswer-A
Anuattackeruaccessesuprivateuemailsubetweenutheucompany'suCISOuanduboardumembers.uTheuattackeruth
enupublishesutheuemailsuonline.
Whichutypeuofuanuattackuisuthis,uaccordingutoutheuSTRIDEumodel?
A. Repudiation
B. Informationu disclosure
C. Elevationuofuprivilege
D. Tamperingu-uanswer-B
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
Ausecurityuguarduatutheufrontudeskuofuaubuildinguchecksueveryuemployee'sunameubadgeuwithutheiruphotoube
foreutheyuareualloweduinutheubuilding.
Whichutwoufactorsuhaveubeenucheckedutouverifyuidentity?
A. Somethinguyouuhave,usomethinguyouuare
B. Somethinguyouuhave,usomethinguyouuknow
C. Somethinguyouuknow,uwhereuyouuareuat
D. Whereuyouuareuat,usomethinguyouuareu-uanswer-A
Ausystemudatauowneruneedsutougiveuaccessutouaunewuemployee,usoutheuowneruformallyurequestsuthatuth
eusystemuadministratorucreateuanuaccountuandupermitutheunewuemployeeutouuseusystemsunecessaryutout
heujob.
Whichutypeuofucontroludoesutheusystemuadministratoruuseutougrantutheseupermissions?
A. Physical
B. Protocol
C. Access
D. Firewallu-uanswer-C
Theuchiefuinformationusecurityuofficeru(CISO)uforuanuorganizationuknowsuthatutheuorganization'sudatacent
erulacksutheuphysicalucontrolsuneededutouadequatelyucontroluaccessutousensitiveucorporateusystems.uTheu
CEO,uCIO,uanduCFOufeeluthatutheucurrentuphysicaluaccessuisuwithinuautolerableuriskulevel,uandutheyuagreeun
otutoupayuforuupgradesutoutheufacility.
Whichuriskumanagementustrategyuhasutheusenioruleadershipudecidedutouemploy?
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
Whichutwoupasswordsuareutheuweakest?
A. Pa$$w0Rd%^78
B. Love@$MySon80
C. C@1Il@VEm1
D. Password1234u-uanswer-BD
Whichutwousecureumethodsushouldubeuusedutoukeeputrackuofupasswords?
A. Encryptutextufilesuofuthemuonutheuuser'suworkstation
B. Storeuthemuonuaustickyunoteuinuauconvenientuspot
C. Shareuthemuwithuautrustedumanageruorucoworker
D. Organization-approvedupasswordustorageusoftwareu-uanswer-AD
Whichugroupsutypicallyureportutoutheuchiefusecurityuofficeru(CSO)?
A. Securityuengineeringuanduoperations
B. Physicaluandusoftwareusecurity
C. Audituanduincidenturesponse
D. Facilitiesuanduinformationutechnologyufunctionsu-uanswer-A
Aucompanyuisuconsideringuwhichucontrolsutoubuyutouprotectuanuasset.
Whatushouldutheupriceuofutheucontrolsubeuinurelationutoutheucostuofutheuasset?
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
A. Lessuthanutheuannualulossuexpectancy
B. Moreuthanutheuannualulossuexpectancy
C. Equalutoutheucostuofutheuasset
D. Moreuthanutheucostuofutheuassetu-uanswer-A
Howumanyukeysuareuuseduinuasymmetricuencryption?
A. Noukeysuareuusedutouencryptuandudecryptuaumessage.
B. Oneukeyuisuusedutouencryptuandudecryptuaumessage.
C. Twoukeysuareuusedutouencryptuandudecryptuaumessage.
D. Threeukeysuareuusedutouencryptuandudecryptuaumessage.u-uanswer-C
Whichuprotocoluisuauvariantuofuaustandarduwebutransferuprotocoluthatuaddsuaulayeruofusecurityuonutheudat
auinutransituusinguausecureusocketulayer?
A. HTTPS
B. HTTP
C. FTP
D. SFTPu-uanswer-A
Whichudescriptionucharacterizesusymmetricucryptography?
A. Theusameukeyuisuusedutoulockuanduunlockutheucipher.
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
B. Twouseparateubutuunrelatedukeysuareuusedutouunlockutheucipher.
C. Twouseparateuandurelatedukeysuareuusedutouunlockutheucipher.
D. Keysuareuunnecessaryuwhenuusingusymmetricucryptographyutouunlockuaucipher.u-uanswer-A
Anuemployeeuusesuausecureuhashingualgorithmuforumessageuintegrity.uTheuemployeeusendsuauplainutextu
messageuwithutheuembeddeduhashutouaucolleague.uAurogueudeviceureceivesuanduretransmitsutheumessage
utouitsudestination.uOnceureceiveduanducheckedubyutheuintendedurecipient,utheuhashesudounotumatch.
WhichuSTRIDEuconceptuhasubeenuviolated?
A. Tampering
B. Repudiation
C. Elevationuofuprivilege
D. Denial-of-serviceu-uanswer-A
Anuattackeruaccessesuprivateuemailsubetweenutheucompany'suCISOuanduboardumembers.uTheuattackeruth
enupublishesutheuemailsuonline.
Whichutypeuofuanuattackuisuthis,uaccordingutoutheuSTRIDEumodel?
A. Repudiation
B. Informationu disclosure
C. Elevationuofuprivilege
D. Tamperingu-uanswer-B
, WGU C725 Master's Course Information Security and
u u u u u u u
Assurance Exam (Latest 2023 – 2024)
u u u u u
Ausecurityuguarduatutheufrontudeskuofuaubuildinguchecksueveryuemployee'sunameubadgeuwithutheiruphotoube
foreutheyuareualloweduinutheubuilding.
Whichutwoufactorsuhaveubeenucheckedutouverifyuidentity?
A. Somethinguyouuhave,usomethinguyouuare
B. Somethinguyouuhave,usomethinguyouuknow
C. Somethinguyouuknow,uwhereuyouuareuat
D. Whereuyouuareuat,usomethinguyouuareu-uanswer-A
Ausystemudatauowneruneedsutougiveuaccessutouaunewuemployee,usoutheuowneruformallyurequestsuthatuth
eusystemuadministratorucreateuanuaccountuandupermitutheunewuemployeeutouuseusystemsunecessaryutout
heujob.
Whichutypeuofucontroludoesutheusystemuadministratoruuseutougrantutheseupermissions?
A. Physical
B. Protocol
C. Access
D. Firewallu-uanswer-C
Theuchiefuinformationusecurityuofficeru(CISO)uforuanuorganizationuknowsuthatutheuorganization'sudatacent
erulacksutheuphysicalucontrolsuneededutouadequatelyucontroluaccessutousensitiveucorporateusystems.uTheu
CEO,uCIO,uanduCFOufeeluthatutheucurrentuphysicaluaccessuisuwithinuautolerableuriskulevel,uandutheyuagreeun
otutoupayuforuupgradesutoutheufacility.
Whichuriskumanagementustrategyuhasutheusenioruleadershipudecidedutouemploy?
