CompTIA CASP+ (CAS-003) — Question 358

A security administrator wants to implement controls to harden company-owned mobile devices. Company policy specifies the following requirements:
✑ Mandatory access control must be enforced by the OS.
✑ Devices must only use the mobile carrier data transport.
Which of the following controls should the security administrator implement? (Choose three.)

Answer options

• A. Enable DLP
• B. Enable SEAndroid
• C. Enable EDR
• D. Enable secure boot
• E. Enable remote wipe
• F. Disable Bluetooth
• G. Disable 802.11
• H. Disable geotagging

Correct answer: B, F, G

Explanation

The correct answers B, F, and G address the specified requirements. Enabling SEAndroid (B) ensures mandatory access control through the OS, while disabling Bluetooth (F) and 802.11 (G) limits data transmission to the mobile carrier only, complying with the policy. The other options do not meet the mandatory access control requirement or fail to restrict data transport as specified.