CompTIA CASP+ Practice Test

What security issue should a security administrator consider regarding a consumer cloud-based storage application on a mobile device whitelist?

• A. Ineffective monitoring of application usage
• B. Potential for DLP or malware issues
• C. Incompatibility with internal systems
• D. Lack of vendor support

The correct answer is: Potential for DLP or malware issues

The selection of potential for DLP (Data Loss Prevention) or malware issues as the key security issue regarding a consumer cloud-based storage application on a mobile device whitelist is appropriate due to the inherent risks associated with storing and accessing sensitive data through consumer-oriented solutions. Consumer cloud-based storage applications often lack the robust security features that enterprise solutions have, which can lead to vulnerabilities. DLP issues arise when sensitive data may inadvertently be shared or leaked from the organization due to the application’s specific capabilities or the way it handles data. For example, if an employee uploads sensitive documents to a personal cloud storage service, there could be insufficient control over who accesses that data, leading to potential breaches or compliance violations. Additionally, malware issues are prevalent when using applications not specifically designed for enterprise use. These applications can be compromised and may introduce malicious software onto the organization’s network, further threatening data integrity and confidentiality. This risk is exacerbated when mobile devices are involved, due to their portability and frequent connections to a variety of networks. Thus, the combination of DLP concerns and the possibility of malware makes this a critical issue for security administrators to consider when implementing mobile device management strategies and whitelisting applications. The other considerations, while important, do not directly address the