CompTIA CASP+ (CAS-004) — Question 466

A systems administrator is developing an implementation plan for mobile device use within the corporate environment. Currently, there are no controls in place limiting the ability to install corporate applications on personal devices. The systems administrator needs to ensure devices that access corporate data meet minimum security requirements and maintain segmentation between personal and corporate data. Which of the following functions would be best to implement to support the stated requirements? (Choose two.)

Answer options

• A. Containerization
• B. Allow list
• C. Block list
• D. Token-based access,
• E. Conditional access
• F. Geofencing
• G. Firmware over-the-air

Correct answer: A, E

Explanation

Containerization allows for the creation of secure areas on mobile devices to store corporate applications and data separately from personal information, addressing the need for data segmentation. Conditional access ensures that only devices meeting specific security criteria can access corporate resources, further protecting sensitive information. The other options do not effectively address both security requirements and data segmentation as needed.