Certified Information Systems Auditor (CISA) — Question 597
Which of the following is the BEST recommendation to include in an organization's bring your own device (BYOD) policy to help prevent data leakage?
Answer options
- A. Specify employee responsibilities for reporting lost or stolen BYOD devices.
- B. Require multi-factor authentication on BYOD devices.
- C. Require employees to waive privacy rights related to data on BYOD devices.
- D. Allow only registered BYOD devices to access the network.
Correct answer: D
Explanation
The correct answer is D because allowing only registered BYOD devices to access the network helps ensure that only authorized devices are permitted, reducing the risk of data leakage. Option A is important for accountability but does not directly prevent data leakage. Option B enhances security but is not as comprehensive as device registration. Option C raises ethical concerns and does not effectively safeguard data.