WGU D488 OBJECTIVE ASSESSMENT TEST BANK / D488 OA
Test Bank | Cybersecurity Architecture and Engineering OA Exam
QUESTIONS AND CORRECT ANSWERS | LATEST 2026/2027 |
GRADED A+.
The chief technology officer for a small publishing company has been tasked with
improving the company's security posture. As part of a network upgrade, the
company has decided to implement intrusion detection, spam filtering, content
filtering, and antivirus controls. The project needs to be completed using the least
amount of infrastructure while meeting all requirements. Which solution fulfills
these requirements?
A - Deploying an anti-spam gateway
B - Deploying a proxy server
C - Deploying a unified threat management (UTM) appliance
D - Deploying a web application firewall (WAF) - CORRECT ANSWER-C -
Deploying a unified threat management (UTM) appliance
The security team plans to deploy an intrusion detection system (IDS) solution to
alert engineers about inbound threats. The team already has a database of
signatures that they want the IDS solution to validate. Which detection technique
meets the requirements? A - Intrusion detection
B - Deep packet inspection
C - Signature-based detection
D - Intrusion prevention - CORRECT ANSWER-C - Signature-based detection
,An IT organization had a security breach after deploying an update to its
production web servers. The application currently goes through a manual update
process a few times per year. The security team needs to recommend a failback
option for future deployments. Which solution fulfills these requirements?
A - Implementing a code scanner
B - Implementing code signing
C - Implementing versioning
D - Implementing a security requirements traceability matrix (SRTM) -
CORRECT ANSWER-C - Implementing versioning
The security team recently enabled public access to a web application hosted on a
server inside the corporate network. The developers of the application report that
the server has received several structured query language (SQL) injection attacks
in the past several days. The team needs to deploy a solution that will block the
SQL injection attacks. Which solution fulfills these requirements?
A - Virtual private network (VPN)
B - Security information and event management (SIEM)
C - Web application firewall (WAF)
D - Secure Socket Shell (SSH) - CORRECT ANSWER-C - Web application
firewall (WAF)
An IT security team has been notified that external contractors are using their
personal laptops to gain access to the corporate network. The team needs to
recommend a solution that will prevent unapproved devices from accessing the
network. Which solution fulfills these requirements?
,A - Implementing a demilitarized zone (DMZ)
B - Installing a hardware security module
C - Implementing port security
D - Deploying a software firewall - CORRECT ANSWER-C - Implementing port
security
An IT organization recently suffered a data leak incident. Management has asked
the security team to implement a print blocking mechanism for all documents
stored on a corporate file share. Which solution fulfills these requirements?
A - Virtual desktop infrastructure (VDI)
B - Remote Desktop Protocol (RDP)
C - Digital rights management (DRM)
D - Watermarking - CORRECT ANSWER-C - Digital rights management (DRM)
A company has recently discovered that a competitor is distributing copyrighted
videos produced by the in-house marketing team. Management has asked the
security team to prevent these types of violations in the future. Which solution
fulfills these requirements?
A - Virtual desktop infrastructure (VDI)
B - Secure Socket Shell (SSH)
C - Digital rights management (DRM)
D - Remote Desktop Protocol (RDP) - CORRECT ANSWER-C - Digital rights
management (DRM)
, A security team has been tasked with performing regular vulnerability scans for a
cloud-based infrastructure. How should these vulnerability scans be conducted
when implementing zero trust security?
A - Manually
B - Annually
C - Automatically
D - As needed - CORRECT ANSWER-C - Automatically
A healthcare company needs to ensure that medical researchers cannot
inadvertently share protected health information (PHI) data from medical records.
What is the best solution?
A - Encryption
Test Bank | Cybersecurity Architecture and Engineering OA Exam
QUESTIONS AND CORRECT ANSWERS | LATEST 2026/2027 |
GRADED A+.
The chief technology officer for a small publishing company has been tasked with
improving the company's security posture. As part of a network upgrade, the
company has decided to implement intrusion detection, spam filtering, content
filtering, and antivirus controls. The project needs to be completed using the least
amount of infrastructure while meeting all requirements. Which solution fulfills
these requirements?
A - Deploying an anti-spam gateway
B - Deploying a proxy server
C - Deploying a unified threat management (UTM) appliance
D - Deploying a web application firewall (WAF) - CORRECT ANSWER-C -
Deploying a unified threat management (UTM) appliance
The security team plans to deploy an intrusion detection system (IDS) solution to
alert engineers about inbound threats. The team already has a database of
signatures that they want the IDS solution to validate. Which detection technique
meets the requirements? A - Intrusion detection
B - Deep packet inspection
C - Signature-based detection
D - Intrusion prevention - CORRECT ANSWER-C - Signature-based detection
,An IT organization had a security breach after deploying an update to its
production web servers. The application currently goes through a manual update
process a few times per year. The security team needs to recommend a failback
option for future deployments. Which solution fulfills these requirements?
A - Implementing a code scanner
B - Implementing code signing
C - Implementing versioning
D - Implementing a security requirements traceability matrix (SRTM) -
CORRECT ANSWER-C - Implementing versioning
The security team recently enabled public access to a web application hosted on a
server inside the corporate network. The developers of the application report that
the server has received several structured query language (SQL) injection attacks
in the past several days. The team needs to deploy a solution that will block the
SQL injection attacks. Which solution fulfills these requirements?
A - Virtual private network (VPN)
B - Security information and event management (SIEM)
C - Web application firewall (WAF)
D - Secure Socket Shell (SSH) - CORRECT ANSWER-C - Web application
firewall (WAF)
An IT security team has been notified that external contractors are using their
personal laptops to gain access to the corporate network. The team needs to
recommend a solution that will prevent unapproved devices from accessing the
network. Which solution fulfills these requirements?
,A - Implementing a demilitarized zone (DMZ)
B - Installing a hardware security module
C - Implementing port security
D - Deploying a software firewall - CORRECT ANSWER-C - Implementing port
security
An IT organization recently suffered a data leak incident. Management has asked
the security team to implement a print blocking mechanism for all documents
stored on a corporate file share. Which solution fulfills these requirements?
A - Virtual desktop infrastructure (VDI)
B - Remote Desktop Protocol (RDP)
C - Digital rights management (DRM)
D - Watermarking - CORRECT ANSWER-C - Digital rights management (DRM)
A company has recently discovered that a competitor is distributing copyrighted
videos produced by the in-house marketing team. Management has asked the
security team to prevent these types of violations in the future. Which solution
fulfills these requirements?
A - Virtual desktop infrastructure (VDI)
B - Secure Socket Shell (SSH)
C - Digital rights management (DRM)
D - Remote Desktop Protocol (RDP) - CORRECT ANSWER-C - Digital rights
management (DRM)
, A security team has been tasked with performing regular vulnerability scans for a
cloud-based infrastructure. How should these vulnerability scans be conducted
when implementing zero trust security?
A - Manually
B - Annually
C - Automatically
D - As needed - CORRECT ANSWER-C - Automatically
A healthcare company needs to ensure that medical researchers cannot
inadvertently share protected health information (PHI) data from medical records.
What is the best solution?
A - Encryption
