During an annual review of security policies, a company discovered that multiple incidents related to data leakage were a result of employees accidentally sending proprietary information to external contacts. Which of the following would be the BEST approach to mitigate this type of unintentional data loss?
Enforce more stringent role-based access controls on proprietary data.
Review and update the procedures for external communications to include stricter guidelines.
Increase the frequency of employee training on the acceptable use policy and proper data handling.
Implement data loss prevention (DLP) systems that can detect and block sensitive data from being sent via email.
Implementing DLP systems enables the organization to prevent certain types of sensitive data from being sent outside the corporate network, which directly addresses the concern of accidental data leakage mentioned in the scenario. While training on policy and the review of existing procedures may help reduce incidents, they are reactive measures that don't offer the technological prevention that DLP systems do. Role-based access controls are essential for limiting data access but would not necessarily prevent data from being sent to unauthorized recipients.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Data Loss Prevention (DLP) systems and how do they work?
Open an interactive chat with Bash
Why is employee training on acceptable use policies still important?
Open an interactive chat with Bash
What other measures can be taken to complement DLP systems in preventing data loss?