Certified Information Security Manager (CISM) — Question 369

Which of the following is the BEST way to reduce the risk associated with a bring your own device (BYOD) program?

Answer options

• A. Implement a mobile device policy and standard.
• B. Provide employee training on secure mobile device practices.
• C. Implement a mobile device management (MDM) solution.
• D. Require employees to install an effective anti-malware app.

Correct answer: C

Explanation

The correct answer is C, as implementing a mobile device management (MDM) solution provides comprehensive control over devices, ensuring security compliance and data protection. While options A, B, and D are important components of a BYOD strategy, they do not offer the same level of centralized management and security enforcement that an MDM solution provides.