WGU D488

D488 Leave the first rating Students also studied Terms in this set (19) Western Governors UniversityD 487 Save D488 - Cybersecurity Architecture a...1,074 terms SpaceChimpanzee Preview D488 Study 61 terms OSRSWCPreview D488 - Cybersecurity Architecture ...Teacher 106 terms Joseph_N_Gachoki Preview D488 234 term jaso A security team has been tasked with mitigating the risk of stolen credentials after a recent breach. The solution must isolate the use of privileged accounts. In the future, administrators must request access to mission- critical services before they can perform their tasks.What is the best solution?Privileged access management (PAM) An IT security team has been notified that external contractors are using their personal laptops to gain access to the corporate network. The team needs to recommend a solution that will prevent unapproved devices from accessing the network. Which solution fulfills these requirements?Implementing port security A healthcare company needs to ensure that medical researchers cannot inadvertently share protected health information (PHI) data from medical records.What is the best solution?Anonymization The security operations center (SOC) team just received a notification that multiple vulnerabilities are present in the codebase of a corporate application. Which threat type is most likely in this scenario?Supply chain

The security operations center (SOC) team for a global company is planning an initiative to defend against security breaches. Leadership wants the team to monitor for threats against the organization’s data, credentials, and brand reputation by scanning networks that can not be accessed via search engines. Which type of network should be scanned based on the requirements?Deep web A company operates a customer service call center with over one hundred agents taking inbound sales calls.After a recent security breach, the security team believes that one or more agents have been stealing customer credit card details. Which solution will defend against this issue?Data loss prevention (DLP) The security team has noticed that several endpoints on the network have been infected with malware.Leadership has tasked the security team with identifying these attacks in the future. Which solution will notify the team automatically in the event of future malware variants invading the network?Antivirus alerts A financial services company has experienced several incidents of data breaches in recent months. The company has analyzed the indicators of compromise and determined that the data breaches were caused by insider threats. The company has decided to implement hardening techniques and endpoint security controls to mitigate the risk. What should be used to prevent data breaches caused by insider threats based on the indicators of compromise?Data loss prevention (DLP) A company is developing a cybersecurity risk management program and wants to establish metrics to measure the program's effectiveness. What should the company consider?Key performance indicators (KPIs) A marketing agency has discovered a known vulnerability in its web content management system.The system contains a large number of obsolete and insecure snapshots of virtual machines, which can potentially be exploited by attackers to compromise the web content management system. The agency has decided to implement hardening techniques and endpoint security controls to mitigate the risk. Which technique will meet the needs of this agency?Removing outdated and unsecured images and templates

A financial institution is concerned about the potential risks associated with unauthorized access to sensitive data on its servers. The company has decided to implement hardening techniques and endpoint security controls to mitigate the risk. Which technique will provide a secure operating system with access controls for user applications?SELinux Which public-key cryptosystem uses prime factorization as the basis for its security?Rivest-Shamir-Adleman (RSA) Which key exchange algorithm is used to establish a shared secret key between two parties without the need for a pre-shared secret or public key exchange?Diffie-Hellman (DH) Which block cipher mode of operation is resistant to ciphertext manipulation attacks by the previous ciphertext block with the current plaintext block before encryption?Cipher block chaining (CBC) Which authenticated encryption mode of operation uses a one-time key and a function to provide strong message authentication and is designed to be fast?Poly1305 Which statement describes the role of risk tolerance in the development of a financial services company's mobile application for managing customer accounts and on-the-go transactions?Risk tolerance helps the company determine the acceptable level of risk for the mobile application based on its potential impact on the company and its customers.Which security control will secure a web-based credit monitoring service and protect credit information of consumers in compliance with Fair Credit Reporting Act (FCRA) requirements?Access controls A company is planning to update its disaster recovery plan to ensure that it meets the latest regulations on securing personally identifiable information (PII). What is the term used to describe the process of identifying and evaluating the effect that the updated plan will have on the company's operations and stakeholders?Privacy Impact Assessment (PIA) A company is developing its disaster recovery plan and wants to ensure the security of its data, even in the event of a major disaster. The IT team is considering using a tool that provides visibility into cloud applications and enforces data security policies.Cloud access security broker (CASB)