CISA Exam - Question 12

A.is correct. The data in the mobile device is fully encrypted. If there is no corresponding key, it is almost impossible for others to crack it.

A is the answer its a preventive control. B is a corrective control

Answer is A Encryption helps keep that data safe because no one can access it without the correct password. Remote data wipe capabilities will be triggered only if the Mobile device is registered to an MDLM system and when it is connected to the internet after it is lost or stolen.

Triggering remote data wipe capabilities is an effective measure to mitigate the risk of data leakage. It allows organizations to remotely erase the data on the lost or stolen device to prevent unauthorized access. However, in some cases, the data may still be recoverable if it is not encrypted. Therefore, combining data encryption with remote data wipe provides an even stronger protection against data leakage.

All encrypted data can be decrypted, may be it will take a million years but if I could erase the data remotely, then data loss has been prevented. So I will go with B

Encryption of the data is the most correct answer

A is the right answer.

A encryption is not the answer in this case. It encrypts everything on the device, making it inflexible and having a performance impact on normal use.

only awareness can most possibly makes this less chance to happen again

Answer: A

data leakage = confidentiality = encryption. Read again and again the ques, sometimes the terms being used were in a twisted manner.

I agree A is right. What if the user didn't report or delayed reporting it lost?