Exam CISA topic 1 question 691 discussion

A. Device encryption is the most effective control to minimize the risk of unauthorized access to lost company-owned mobile devices. Encrypting the device ensures that even if it falls into the wrong hands, the data remains inaccessible without the decryption key. Why other options are less effective: Device tracking software: While helpful for locating a lost device, it does not prevent unauthorized access to the data. Password/PIN protection: Offers a basic level of protection but can be bypassed through various means. Periodic backup: Important for data recovery but does not protect against unauthorized access on the lost device. Isaca Certified Information Systems Auditor CISA certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Isaca Certified Information Systems Auditor CISA exam and earn Isaca Certified Information Systems Auditor CISA certification.

While password/PIN protection (option C) is important for initial access control, device encryption (option A) is the superior control for minimizing the risk of unauthorized access to lost company-owned mobile devices due to its ability to protect data from unauthorized access even if physical possession of the device is compromised.

he question is talking about control that prevent unauthorised person to access the devices so to me password or pin is the correct answer, if the question was talking about accessing data on the lost device then encryption was going to be the perfect.

The question is talking about control that prevent unauthorised person to access the devices so to me password or pin is the correct answer, if the question was talking about accessing data on the lost device then encryption was going to be the perfect.

In these type of questions, Encryption is always the best answer

A, Device encryption ?,PIN Better?