Certified Information Systems Auditor (CISA) — Question 705

Which of the following is the BEST preventive control to protect the confidentiality of data on a corporate smartphone in the event it is lost?

Answer options

• A. Encryption of the data stored on the device
• B. Remote data wipe program
• C. Password for device authentication
• D. Biometric authentication for the device

Correct answer: A

Explanation

Encryption of the data stored on the device is the best preventive control because it ensures that even if the smartphone falls into the wrong hands, the data remains unreadable without the decryption key. While a remote wipe can delete data, it only works if the device is still accessible; passwords and biometric authentication protect access but do not secure the data itself in the event of loss.