1. What is the primary goal of Web Application Security?

To create new vulnerabilities To protect systems and data from unauthorized access To monitor employee activities only To slow down system performance

2. Which of the following is a security best practice?

Using the same password for all accounts Ignoring software updates Regular security audits and vulnerability assessments Disabling all firewalls for performance

3. What does defense-in-depth strategy provide?

A single point of failure Multiple layers of controls that reduce overall risk Faster system performance Less administrative overhead

4. Why is continuous monitoring important?

It replaces all other security measures It allows early detection of threats and anomalies It is only needed for large organizations It eliminates all cyber threats automatically