CRISC Certified in Risk and Information Systems Control – Question712

An organization is considering allowing users to access company data from their personal devices. Which of the following is the MOST important factor when assessing the risk?

A.
Classification of the data
B. Type of device
C. Remote management capabilities
D. Volume of data

Correct Answer: C