WGU (KFO1/D488) Cybersecurity Architecture and Engineering Exam - Topic 4 Question 12 Discussion

Actual exam question for WGU's WGU (KFO1/D488) Cybersecurity Architecture and Engineering exam

Question #: 12
Topic #: 4

[All WGU (KFO1/D488) Cybersecurity Architecture and Engineering Questions]

While undergoing a security audit, it is determined that an organization has several backup repositories hosted in the cloud without any level of protection.

Which action should be taken to protect the backup repositories first?

AAudit access logs

BRun a vulnerability scan

CRestrict access to the backups

DDisable the backup repositories

Show Suggested Answer

Suggested Answer: C

The correct answer is C --- Restrict access to the backups.

According to WGU Cybersecurity Architecture and Engineering (KFO1 / D488), the first step in protecting sensitive data such as cloud backups is enforcing access controls to limit who can access the data. Restricting access immediately mitigates the risk of unauthorized exposure or tampering.

Auditing access logs (A) provides insight but does not actively protect. Running vulnerability scans (B) identifies issues but does not protect immediately. Disabling repositories (D) is not practical for maintaining backup availability.

Reference Extract from Study Guide:

'Access control is the first line of defense for sensitive data repositories, ensuring that only authorized users can access backup data.'

--- WGU Cybersecurity Architecture and Engineering (KFO1 / D488), Data Security and Access Control

=============================================

by Georgeanna at May 15, 2026, 06:39 PM

Limited Time Offer

25%

Off

Get Premium WGU (KFO1/D488) Cybersecurity Architecture and Engineering Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Julio

16 days ago

I think restricting access to the backups is the most logical first step, but I’m not entirely sure if that’s enough on its own.

upvoted 0 times

...