CompTIA CASP+ (CAS-004) — Question 203

When a remote employee traveled overseas, the employee’s laptop and several mobile devices with proprietary tools were stolen. The security team requires technical controls be in place to ensure no electronic data is compromised or changed. Which of the following BEST meets this requirement?

Answer options

• A. Mobile device management with remote wipe capabilities
• B. Passwordless smart card authorization with biometrics
• C. Next-generation endpoint detection and response agent
• D. Full disk encryption with centralized key management

Correct answer: D

Explanation

Full disk encryption with centralized key management ensures that all data on the devices is protected and inaccessible without the proper keys, thereby preventing data compromise. While mobile device management can help manage devices, it does not guarantee data protection if devices are stolen. The other options, while useful for security, do not provide the same level of protection for data at rest as full disk encryption does.