Exam CISA topic 1 question 12 discussion

data leakage = confidentiality = encryption. Read again and again the ques, sometimes the terms being used were in a twisted manner.

Answer: A

only awareness can most possibly makes this less chance to happen again

A encryption is not the answer in this case. It encrypts everything on the device, making it inflexible and having a performance impact on normal use.

A is the right answer.

Triggering remote data wipe capabilities is an effective measure to mitigate the risk of data leakage. It allows organizations to remotely erase the data on the lost or stolen device to prevent unauthorized access. However, in some cases, the data may still be recoverable if it is not encrypted. Therefore, combining data encryption with remote data wipe provides an even stronger protection against data leakage.

Encryption of the data is the most correct answer

A is the answer its a preventive control. B is a corrective control

Answer is A Encryption helps keep that data safe because no one can access it without the correct password. Remote data wipe capabilities will be triggered only if the Mobile device is registered to an MDLM system and when it is connected to the internet after it is lost or stolen.

All encrypted data can be decrypted, may be it will take a million years but if I could erase the data remotely, then data loss has been prevented. So I will go with B

A.is correct. The data in the mobile device is fully encrypted. If there is no corresponding key, it is almost impossible for others to crack it.