Question

social workers at an outreach center are responsible for maintaining the security and privacy of the residents who are in their care. the social workers often have the residents participate in activities online, such as web conferences and social media for games and entertainment. employees often share their mobile devices if residents do not have one for those functions. the outreach center recently moved to a BYOD policy to reduce costs while increasing employee acceptance of mobile devices. the compliance department issued several guidelines:

o resident privacy must be maintained.

o all corporate applications should be loaded under a single application icon.

o all resident case updates must be done using the corporate application.

Which of the following controls should IT implement to BEST meet the compliance need? (Select TWO).

A. Administrative control policy to inform residents to refrain from posting on social media.

B. Technical control for remote wipe capability to erase all data

C. Administrative control policy restricting the use of devices to the center only

D. Technical control to remove the geotagging feature from devices

E. Administrative control to require a PIN or passphrase to unlock the device

F. Technical control for an application blacklist to restrict social media.

Answer 1

Before selecting any two best options lets look on the guildlines that have to be maintain after choosing the options. So the guidlines are :

o resident privacy must be maintained.

o all corporate applications should be loaded under a single application icon.

o all resident case updates must be done using the corporate application.

Now we will look upon the option one-by-one that they are full-fiiling our guidlines or not. Then we will choose the best two options that they together complete all the guidlines.

A. Administrative control policy to inform residents to refrain from posting on social media.

So , the above option leads up to spread the Awareness in the residents to refrain from posting on social media, but it can not give us the 100% probability to securing the resident privacy. But also it will help us to create a policy through Administrator give the information to all the resident about refrain from posting on social media, and all of its positive and negative sides.

B. Technical control for remote wipe capability to erase all data.

Having technical control for remote wipe capability to erase all data gives the control to administration to wipe the irrelevant data but with irrelevant data the usefull data is also be deleted, as this option give control to wipe all the data. so definatly this option is not feasible for maintaing any of the guidline.

C. Administrative control policy restricting the use of devices to the center only.

This option give control to Administration to restrict the devices to the center only, this help to achieve the last two guidline very well. as the devices was used in the center so it is helpful to look on the activites of the individuals and also those residents who take the devies of the employee to participate in social media activites.

D. Technical control to remove the geotagging feature from devices.

This option leads to secure the resident privacy (1^st guidline). also secure the administrator from the various things. Geotagging contains the data like longitute and latitude , place name , etc in form of mata data. so by removing the geotagging feature from devices the resident privacy was maintained.

E. Administrative control to require a PIN or passphrase to unlock the device

By setting the PIN or passphrase administration can control the various unwanted activity. this is also a feasible option to secure the devices from unwanted login, and loosing the important data.

F. Technical control for an application blacklist to restrict social media.

As social workers want the resident to participate in the social media activities , so by blaclisting or restricting the social media by technical control doesn't a feasible choice.

So , if have to select TWO options for BEST meet the compliance need. It was Option C and D.

kindly Hit like!!!