During an annual review of security policies, a company discovered that multiple incidents related to data leakage were a result of employees accidentally sending proprietary information to external contacts. Which of the following would be the BEST approach to mitigate this type of unintentional data loss?
Increase the frequency of employee training on the acceptable use policy and proper data handling.
Enforce more stringent role-based access controls on proprietary data.
Implement data loss prevention (DLP) systems that can detect and block sensitive data from being sent via email.
Review and update the procedures for external communications to include stricter guidelines.
Implementing DLP systems enables the organization to prevent certain types of sensitive data from being sent outside the corporate network, which directly addresses the concern of accidental data leakage mentioned in the scenario. While training on policy and the review of existing procedures may help reduce incidents, they are reactive measures that don't offer the technological prevention that DLP systems do. Role-based access controls are essential for limiting data access but would not necessarily prevent data from being sent to unauthorized recipients.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Data Loss Prevention (DLP) systems and how do they work?
Open an interactive chat with Bash
Why is employee training on acceptable use policies still important?
Open an interactive chat with Bash
What other measures can be taken to complement DLP systems in preventing data loss?