Question

An administrator is working with management to develop policies related to the use of the cloud-based resources that contain corporate data. Management plans to require some control over organizational data stored on personal devices, such as tablets.

Which of the following controls would BEST support management's policy?

A. MDM
B. Sandboxing
C. Mobile tokenization
D. FDE
E. MFA

Answer 1

MDM (Mobile Device Management) is the best option for controlling corporate data on personal devices because it allows for the enforcement of security policies and remote wiping of corporate information, while also respecting private data.

Step-by-step explanation:

The best control to support the management's policy for control over organizational data stored on personal devices is MDM (Mobile Device Management).

MDM allows an organization to enable device-level policies that can control access to corporate data, enforce security measures, and remotely wipe corporate data if necessary, without affecting personal data. This means that if a device is lost or an employee leaves, the organization can remove their data from the device. Sandboxing involves running apps in a restricted environment and would not provide the level of control over data that management is seeking. Mobile tokenization is more about securing payment information and would not be applicable to data control on personal devices. FDE (Full Disk Encryption) would encrypt the entire device, which might not be preferable if the device is personal. MFA (Multi-Factor Authentication) would add an additional layer of security but does not grant management control over the data on the device itself.