Which of the following is a limitation of the remote wipe for a smart device?

IIA IIA-CIA-Part3 Full Course Access

IIA IIA-CIA-Part3 View All Questions

IIA IIA-CIA-Part3 Question Answer

Encrypted data cannot be locked to prevent further access

Default settings cannot be restored on the device.

All data, cannot be completely removed from the device

Mobile device management software is required for successful remote wipe

Explanation:

Remote wipe is not always 100% effective: While remote wiping can delete most user data, some residual data may remain on the device, especially in cases where:

The device has built-in storage redundancies.

Deleted data can be recovered using forensic tools.

The remote wipe command fails to execute properly due to network issues or device settings.

Security Risk: This limitation poses a risk for organizations handling sensitive or confidential data, as unauthorized individuals may recover wiped data.

IIA Standard 2110 - Governance: Internal auditors must assess how organizations manage IT security risks, including risks related to mobile devices and data protection.

IIA Practice Guide: Auditing Cybersecurity Risks highlights the need to evaluate mobile security controls and limitations of data removal techniques.

A. Encrypted data cannot be locked to prevent further access (Incorrect)

Encrypted data remains secure even if the device is lost.

Many enterprise security solutions allow organizations to revoke encryption keys remotely, making data inaccessible.

IIA Standard 2120 - Risk Management advises that effective encryption reduces the impact of data loss.

B. Default settings cannot be restored on the device. (Incorrect)

Most remote wipe solutions allow factory reset, restoring the device to default settings.

Many mobile device management (MDM) tools support full device restoration.

D. Mobile device management software is required for a successful remote wipe. (Incorrect)

While MDM enhances remote wiping capabilities, it is not strictly required.

Some consumer and enterprise mobile operating systems (e.g., iOS, Android) provide built-in remote wipe functionality without MDM.

Explanation of Answer Choice C (Correct Answer):Explanation of Incorrect Answers:Conclusion:Remote wipe has limitations, and the inability to completely remove all data from the device (Option C) is a primary concern.

IIA References:

IIA Standard 2110 - Governance

IIA Standard 2120 - Risk Management

IIA Practice Guide: Auditing Cybersecurity Risks

IIA-CIA-Part3 PDF/Engine

Printable Format
Value of Money
100% Pass Assurance
Verified Answers
Researched by Industry Experts
Based on Real Exams Scenarios
100% Real Questions

Get 65% Discount on All Products, Use Coupon: "ac4s65"

In an organization that produces chocolate, the leadership team decides that the organization will open...

What is the primary purpose of data and systems backup?

Month End Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ac4s65

Which of the following is a limitation of the remote wipe for a smart device?

The Answer Is:

Explanation:

Quick Links