A user reports a stolen personal mobile device that stores sensitive corporate data. Which of the following will BEST minimize the risk of data exposure?
A user reports a stolen personal mobile device that stores sensitive corporate data. Which of the following will BEST minimize the risk of data exposure?
When a personal mobile device storing sensitive corporate data is reported stolen, the best way to minimize the risk of data exposure is to wipe the device remotely. This ensures that any sensitive data stored on the device is completely removed, preventing unauthorized access to it. Simply removing the user's access to corporate data does not address the fact that the data on the device itself can still be accessed by whoever has stolen the device.
Question is best minimize data exposure. Removing the the user access is one option but is it the best? The corporate data that's locally stored on the device is still available. So, in my opinion wiping it is the best option assuming the MDM can do that and that is A.
It is A, you must assume you have controls in place to remote wipe it via containerisation.
you cannot wipe personal mobile phone, also there is no separate container on IOS like on Android
I Agree
You may agree, but you are wrong. The answer is...A.
You may not be able to wipe the "personal" data off the phone but the organization does not care about that. All MDMs are capable of still removing the corporate part off BYOD.
It's B. For some reason the question says "PERSONAL mobile device". If it's a personal device you don't have corporate MDM or similar to do remote wipes
Users can do it by themselves, it gives you those actions you can choose, which means they are available.
Questions is weird. Says "personal" mobile device but then also says sensitive corp data is stored on device. I don't like to assume with questions but you have to assume that if there is corp data on personal device then they should have a mobile device management solution and THEREFORE you can use that to WIPE IT or wipe remove the app that has the corp data. Example of MDM would be Microsoft Intune. Two cents.
It stores sensitive data, so there's need to wipe it clearly!
Wipe is important.
This is an ambiguous question. If MDM had been implemented, the answer should be A. Otherwise, you can only limit the damage because you can no longer protect the data stored on the stolen personal device. In this case, the answer could be B or C
A user reports a stolen personal mobile device that STORES sensitive corporate data. STORES is the operative word here. Disabling user's access will prevent access to corporate servers, but what about sensitive data stored on the mobile? Wiping the device on the other hand, prevents the risk of exposure of sensitive data already on the mobile device and wipes out all access data as well.
Best approach is to promptly remove the user's access to corporate data to prevent unauthorized access, followed by wiping the device remotely to ensure the data cannot be accessed from the stolen device. Reporting the incident to the police is also a good step for potential recovery but doesn't directly minimize data exposure.
B is correct , keywords personal mobile device.
A. Wipe the device remotely
The best way to minimize the risk of data exposure when a user reports a stolen personal mobile device that stores sensitive corporate data is to wipe the device remotely.