CompTIA Security Plus Mock Test Q488

A company has recently allowed employees to take advantage of BYOD by installing WAPs throughout the corporate office. An employee, Joe, has recently begun to view inappropriate material at work using his personal laptop. When confronted, Joe indicated that he was never told that he could not view that type of material on his personal laptop. Which of the following should the company have employees acknowledge before allowing them to access the corporate WLAN with their personal devices?

A. Privacy Policy
B. Security Policy
C. Consent to Monitoring Policy
D. Acceptable Use Policy

Correct Answer: D
Section: Compliance and Operational Security

Acceptable use policies (AUPs) describe how the employees in an organization can use company systems and resources, both software and hardware.

Incorrect Answers:
A: Privacy policy is meant to specify any measures taken to protect the privacy and confidentiality of personally identifiable information.
B: Security policy is the overall purpose and direction of security in an environment. This includes the detailed procedural documents that indicate how work functions should occur in the workplace so as to comply with security.
C: Consent to Monitoring policy does not involve instructions on how to use company resources when making use of own devices of staff.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 24