CompTIA Security+ (SY0-501) — Question 882

The Chief Executive Officer (CEO) of an organization would like staff members to have the flexibility to work from home anytime during business hours, including during a pandemic or crisis. However, the CEO is concerned that some staff members may take advantage of the flexibility and work from high-risk countries while on holiday or outsource work to a third-party organization in another country. The Chief Information Officer (CIO) believes the company can implement some basic controls to mitigate the majority of the risk. Which of the following would be BEST to mitigate the CEO's concerns? (Choose two.)

Answer options

• A. Geolocation
• B. Time-of-day restrictions
• C. Certificates
• D. Tokens
• E. Geotagging
• F. Role-based access controls

Correct answer: A, B

Explanation

Geolocation can help ensure that employees are working from approved locations, which addresses the concern about high-risk countries. Time-of-day restrictions can prevent employees from working outside of standard hours, reducing the opportunity for them to misuse their remote work flexibility. The other options, while useful for security, do not directly address the specific concerns related to location and timing.