CompTIA CySA+ (CS0-002) — Question 358

A financial organization has offices located globally. Per the organization's policies and procedures, all executives who conduct business overseas must have their mobile devices checked for malicious software or evidence of tampering upon their return. The information security department oversees this process, and no executive has had a device compromised. The Chief Information Security Officer wants to implement an additional safeguard to protect the organization's data.
Which of the following controls would work BEST to protect the privacy of the data if a device is stolen?

Answer options

• A. Implement a mobile device wiping solution for use if a device is lost or stolen.
• B. Install a DLP solution to track data flow.
• C. Install an encryption solution on all mobile devices.
• D. Train employees to report a lost or stolen laptop to the security department immediately.

Correct answer: C

Explanation

The correct answer is C, as encryption ensures that even if a device is stolen, the data remains inaccessible without the proper decryption keys. Option A, while useful, only addresses lost devices and does not protect data in transit. Option B focuses on monitoring data flow but does not directly secure the data on the device itself. Option D promotes awareness but does not provide actual protection for the data.