ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company operates a hardware-prototyping lab adjacent to its AWS Outposts rack. Engineers frequently bring personally owned smartphones and tablets into the lab to reference design documents stored in Amazon S3. During a recent audit, physical-security staff discovered that photos of confidential prototypes were taken with these devices. To best align with (ISC)² guidance on personal device restrictions in sensitive areas, which action should the security team implement?
Implement a mobile-device management (MDM) solution that installs a secure corporate container before allowing personal devices to connect to the lab Wi-Fi.
Require all personally owned electronic devices to be stored in secure lockers before lab entry and issue company-managed loaner devices for on-site AWS access.
Expand CCTV coverage in the lab and require engineers to sign a non-disclosure agreement (NDA) when receiving their facility badge.
Update the Amazon S3 bucket policy to deny GET Object requests originating from the lab subnet unless they use AWS PrivateLink endpoints.
The primary goal of personal-device restrictions is to eliminate opportunities for covert recording, data exfiltration, or the introduction of malicious code. The most effective way to achieve this in a high-sensitivity space is to prohibit personal electronic devices from the area and provide secure storage so work can proceed with vetted, company-managed equipment. Mobile-device management on personal phones still leaves cameras and local storage available, S3 network controls only address data leaving via the network (not photos taken offline), and NDAs or additional cameras serve as deterrent or detective controls but do not prevent the presence or use of unauthorized devices. Therefore, enforcing a policy that requires all personal devices to be stored outside the lab while supplying approved loaner systems best satisfies (ISC)² recommendations for personal device restrictions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why are personal devices prohibited in sensitive areas?
Open an interactive chat with Bash
What are the limitations of Mobile-Device Management (MDM) in securing sensitive environments?
Open an interactive chat with Bash
How does providing company-managed loaner devices improve security in high-sensitivity areas?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .