Which of the following is NOT one of the main intended goals of a DLP solution?

CCSP 1 Comment

Which of the following is NOT one of the main intended goals of a DLP solution?
A . Showing due diligence
B . Preventing malicious insiders
C . Regulatory compliance
D . Managing and minimizing risk

Answer: B

Explanation:

Data loss prevention (DLP) extends the capabilities for data protection beyond the standard and traditional security controls that are offered by operating systems, application containers, and network devices. DLP is not specifically implemented to counter malicious insiders, and would not be particularly effective in doing so, because a malicious insider with legitimate access would have other ways to obtain data. DLP is a set of practices and controls to manage and minimize risk, comply with regulatory requirements, and show due diligence with the protection of data.

Latest CCSP Dumps Valid Version with 512 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CCSP PDF     CCSP Questions Online Training
Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
Gayan
Gayan
5 years ago

This answer is wrong;
practically speaking the number one reason why companies implement DLP is to audit therefore its a deterrent control; whose accessing what and when. Once you classify data, implement access controls, your DLP can leverage on that to prevent unauthorized staff to access classified data and also to keep a log of any attempts.
i.e. if you implement Microsoft outlook DLP on company email systems, you can enforce controls such as ” ready-only” ” forward-denied” and even prevent unauthorized staff of reading it.

This definition; ” because a malicious insider with legitimate access would have other ways to obtain data.” is wrong in any case, its collection of all security controls which makes unauthorized people deny access to any information.
how would Military or any government office stop low ranked offices from accessing classified data ? Don’t they use DLP solutions for that ?
Simply you don’t use DLP for outside intruders, you use firewalls, APTs and other controls for that. DLP is to prevent internal intruders from leaking / stealing company data to outside!

0
Reply