(updated 2023)
WGU C795
EXAM
QUESTIONS
AND ASNWERS
LATEST
1 / 14
WGU C795 EXAM 2023
- A company’s main asset is a physical working prototype stored in theresearch and development department. The prototype is not currently connected to the company’s network.
Which privileged user activity should be monitored?: Accessing camera logs 2. A company performs a data audit on its critical information every sixmonths. Company policy states that the audit cannot be conducted by thesame employee within a two-year time frame.
Which principle is this company following?: Job rotation - A user is granted access to restricted and classified information but issupplied only with the information for a current assignment.
Which type of authorization mechanism is being applied in this scenario?: -Need to know - Which two data recovery components will back up a file and change thearchive bit to 0?
Choose 2 answers.: Full backup, Incremental backup - A company wants to monitor the inbound and outbound flow of packetsand not the content.
Which defense-in-depth strategy should be implemented?: Traffic and trend
analyses should be installed on the router. - A penetration tester identifies a SQL injection vulnerability in a business-critical web application. The security administrator discusses thisfind- ing with the application developer, and the developer insists that theissue would take two months to remediate.
Which defense-in-depth practice should the security administrator use to
prevent an attacker from exploiting this weakness before the developer
can implement a fix?: Implement a web-application firewall
2 / 14