ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
A healthcare provider supports a BYOD program where clinicians install a proprietary electronic health record (EHR) mobile app on their personal iOS and Android devices. The security team wants to prevent PHI from traversing unmanaged networks or being accessed by other apps, but does not want to require full device enrollment. Using application wrapping through the organization's MDM, which control should they configure first to meet this requirement?
Configure a per-application VPN so the EHR app tunnels traffic only through the hospital's secure gateway.
Require installation of a mobile host-based firewall that filters all outbound connections from the device.
Disable the device camera and microphone using MDM device restrictions to limit data leakage.
Enforce full-disk encryption on the clinician's entire device at the OS level.
Application wrapping applies security controls only to the managed application, leaving the rest of the personal device untouched. Enabling a per-application VPN forces any network traffic generated by the wrapped EHR app to traverse the organization's secure VPN gateway, ensuring protected health information remains on trusted networks and is isolated from other applications. Full-disk encryption, host-based firewalls, and disabling hardware like cameras are device-level or system-wide controls; they do not specifically confine the EHR app's data flows and would typically require broader device management-contradicting the goal of avoiding full device enrollment.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is application wrapping in the context of MDM?
Open an interactive chat with Bash
How does a per-application VPN work?
Open an interactive chat with Bash
Why is enabling full-disk encryption not sufficient for securing the EHR app's data?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Systems and Application Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .