CompTIA
SY0-301 · Question #854
SY0-301 Question #854: Real Exam Question with Answer & Explanation
The correct answer is D: Remotely initiate a device wipe. The first action upon reporting a lost corporate mobile device is a remote wipe to immediately eliminate the risk of unauthorized access to sensitive corporate data.
Question
Which of the following should Jane, the security administrator, do FIRST when an employee reports the loss of a corporate mobile device?
Options
- ARemotely lock the device with a PIN
- BEnable GPS location and record from the camera
- CRemotely uninstall all company software
- DRemotely initiate a device wipe
Explanation
The first action upon reporting a lost corporate mobile device is a remote wipe to immediately eliminate the risk of unauthorized access to sensitive corporate data.
Common mistakes.
- A. Remotely locking the device with a PIN may slow an attacker but does not guarantee data protection if the lock screen can be bypassed through firmware or physical means.
- B. Enabling GPS tracking and camera access delays the critical data protection action and raises significant legal and privacy concerns regarding covert surveillance of whoever holds the device.
- C. Uninstalling corporate software removes applications but may leave corporate data files, credentials, and cached content accessible on the device, making it less comprehensive than a full wipe.
Concept tested. Mobile device loss response - remote wipe priority
Reference. https://learn.microsoft.com/en-us/mem/intune/remote-actions/devices-wipe
Community Discussion
No community discussion yet for this question.