Back

Remote wipe any distributed asset reported lost or stolen.


CONTROL ID
12197
CONTROL TYPE
Process or Activity
CLASSIFICATION
Corrective

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Protect distributed assets against theft., CC ID: 06799

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Install and activate remote device locking and wiping features, which allow the portable computing devices to be locked and local data erased from any location in the event of theft or loss of device. (Annex A2: Portable Computing & Removable Storage Media Security 19, Singapore(PDPC) Guide to Securing Personal Data in Electronic Medium, Revised 20 January 2017)
  • Are mobile devices and tablets managed centrally to provide remote wiping and locking in the event of loss or theft? (Secure configuration Question 24, Cyber Essentials Scheme (CES) Questionnaire, Versions 3.3)
  • If a device is presumed to be lost or stolen, the merchant should immediately disable and securely wipe the device remotely. Note that this may require that the merchant notify the solution provider where such actions require execution by the solution provider. (ΒΆ 5.6.4, PCI Mobile Payment Acceptance Security Guidelines for Merchants as End-Users, Version 1.1)
  • Remotely wipe enterprise data from enterprise-owned portable end-user devices when deemed appropriate such as lost or stolen devices, or when an individual no longer supports the enterprise. (CIS Control 4: Safeguard 4.11 Enforce Remote Wipe Capability on Portable End-User Devices, CIS Controls, V8)