CompTIA CASP+ (CAS-004) — Question 73

An organization is considering a BYOD standard to support remote working. The first iteration of the solution will utilize only approved collaboration applications and the ability to move corporate data between those applications. The security team has concerns about the following:
✑ Unstructured data being exfiltrated after an employee leaves the organization
✑ Data being exfiltrated as a result of compromised credentials
✑ Sensitive information in emails being exfiltrated
Which of the following solutions should the security team implement to mitigate the risk of data loss?

Answer options

• A. Mobile device management, remote wipe, and data loss detection
• B. Conditional access, DoH, and full disk encryption
• C. Mobile application management, MFA, and DRM
• D. Certificates, DLP, and geofencing

Correct answer: C

Explanation

The correct answer is C because Mobile Application Management (MAM) allows for the secure management of applications and data on personal devices, Multi-Factor Authentication (MFA) adds an extra layer of security against compromised credentials, and Digital Rights Management (DRM) helps protect sensitive information from being exfiltrated. The other options do not provide the same level of control over applications and data specifically in a BYOD context.