nerdexam
(ISC)2

CISSP · Question #711

The personal laptop of an organization executive is stolen from the office, complete with personnel and project records. Which of the following should be done FIRST to mitigate future occurrences?

The correct answer is C. Create policies addressing critical information on personal laptops.. The first step to mitigate future occurrences of personal laptops being stolen from the office with critical information is to create policies addressing this issue. Policies are high-level statements that define the goals and objectives of an organization and provide guidance fo

Submitted by fatima_kr· Mar 5, 2026Security and Risk Management

Question

The personal laptop of an organization executive is stolen from the office, complete with personnel and project records. Which of the following should be done FIRST to mitigate future occurrences?

Options

  • AEncrypt disks on personal laptops.
  • BIssue cable locks for use on personal laptops.
  • CCreate policies addressing critical information on personal laptops.
  • DMonitor personal laptops for critical information.

How the community answered

(15 responses)
  • A
    7% (1)
  • B
    13% (2)
  • C
    80% (12)

Explanation

The first step to mitigate future occurrences of personal laptops being stolen from the office with critical information is to create policies addressing this issue. Policies are high-level statements that define the goals and objectives of an organization and provide guidance for decision making. Policies can specify the roles and responsibilities of the users, the acceptable use of personal laptops, the security controls and requirements for protecting critical information, the reporting and response procedures in case of theft or loss, and the sanctions for non-compliance.

Topics

#security policy#data loss prevention#BYOD security#asset protection

Community Discussion

No community discussion yet for this question.

Full CISSP Practice