WGU D487 SECURE SW DESIGN OA
EXAM 2024 ACTUAL EXAM
COMPLETE ACCURATE EXAM
QUESTIONS WITH DETAILED
VERIFIED ANSWERS (100% CORRECT
ANSWERS) /ALREADY GRADED A+
Anna is responsible for uncovering security
requirements for a new software project. Which of
the following approaches would best support
effective security requirement discovery?
A) Focusing only on existing security guidelines
without stakeholder input
B) Evaluating regulatory and business needs to
identify security objectives
C) Avoiding business considerations to maintain
technical focus
D) Relying solely on industry-standard security
requirements
B) Evaluating regulatory and business needs to
identify security objectives
,A software team is working on a project that
involves handling sensitive customer data. What
should they do to ensure that their security
requirements support business objectives?
A) Avoid defining requirements until the testing
phase
B) Identify security requirements that align with both
data protection and business usability goals
C) Set security requirements based on convenience
rather than regulations
D) Focus only on encryption without considering
other security needs
B) Identify security requirements that align with both
data protection and business usability goals
A project manager is collaborating with the software
security professional to define security
requirements. Which question should they ask to
uncover essential security needs?
A) How can we avoid regulatory requirements?
B) What security controls are necessary to protect
data while supporting usability?
C) How can security be implemented at the end of
development?
D) What is the minimum level of security to pass
compliance audits?
,B) What security controls are necessary to protect
data while supporting usability?
Why is discovering security requirements with a
focus on business objectives critical to a project's
success?
A) It ensures security measures are optional and
can be added as needed
B) It aligns security controls with business goals,
enhancing both functionality and risk management
C) It limits stakeholder involvement to speed up the
security definition process
D) It removes the need for a compliance assessment
B) It aligns security controls with business goals,
enhancing both functionality and risk management
During a requirements-gathering session, a security
analyst suggests that the team focus on both
functional and non-functional requirements. What is
the purpose of including non-functional
requirements in security planning?
A) To ensure that the software only meets basic
functional needs
B) To address performance, reliability, and
compliance aspects alongside core functionality
C) To focus exclusively on coding standards for
developers
, D) To simplify the security process by excluding
performance considerations
B) To address performance, reliability, and
compliance aspects alongside core functionality
While gathering requirements, the team identifies
misuse cases that could lead to potential security
risks. Why is it essential to consider misuse cases?
A) To focus development on usability alone
B) To identify ways malicious actors might exploit
the software, allowing the team to mitigate risks
proactively
C) To limit security requirements to known threats
only
D) To ensure that all functionality is built before
considering security
B) To identify ways malicious actors might exploit
the software, allowing the team to mitigate risks
proactively
During stakeholder interviews for a financial
software project, compliance with data protection
regulations is discussed. Which of the following
should be included in the security requirements?
A) Exemptions for certain users from data protection
policies
B) Specific controls to ensure compliance with
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Charitywairimu. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $19.49. You're not tied to anything after your purchase.
