Certified in Risk and Information Systems Control (CRISC) — Question 939

An employee lost a personal mobile device that may contain sensitive corporate information. What should be the risk practitioner’s recommendation?

Answer options

• A. Conduct a risk analysis.
• B. Invoke the incident response plan.
• C. Disable the user account.
• D. Initiate a remote data wipe.

Correct answer: B

Explanation

The correct answer is B, as invoking the incident response plan allows the company to follow established procedures for handling lost devices that may expose sensitive data. Options A, C, and D are not immediate responses; a risk analysis is too slow, disabling a user account does not directly address the loss, and initiating a remote data wipe may not be possible if the device is out of reach.