Data Leakage Prevention

5 minutes 5 Questions

Data Leakage Prevention (DLP) is a set of policies, processes, and technologies designed to protect sensitive data from being accessed, transmitted, or leaked outside the organization's secure environment. DLP solutions include content-aware technologies that can inspect and monitor data in motion,…

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

Question 1

Your organization has implemented a DLP system, but data breaches are still occurring. You suspect that DLP false negatives are the issue. Which of the following steps would be the most effective?

Adjust and refine DLP policies and rules to detect potential leaks more accurately Replace the DLP system with a firewall Disable host-based intrusion detection systems Increase email attachment size limits

Correct Answer: Adjust and refine DLP policies and rules to detect potential leaks more accurately

Adjusting and refining DLP policies and rules will improve the detection accuracy of the DLP system, which should reduce data breaches caused by false negatives. Other solutions mentioned do not directly address the suspected false negatives issue.

Question 2

An organization has recently suffered a significant data breach. You have been hired to suggest a better DLP solution. Which of the following would be the most effective solution?

Endpoint-only DLP Adding more firewalls Network-only DLP Integrated DLP solution

Correct Answer: Integrated DLP solution

An integrated DLP solution covers data in motion, data in use, and data at rest providing a more comprehensive approach to data leakage prevention. Endpoint-only and network-only DLP address only a portion of the potential data leakage points. Firewalls, encrypted USB drives and anti-virus software have their own functionality but don't provide a complete solution to DLP.

Question 3

Your company is using a DLP solution that flags email attachments larger than 10MB. Management now considers these false positives, as large files are often sent between departments. What should be done to address this issue?

Block all attachments larger than 5MB Increase attachment size limit to 20MB Remove the DLP solution Tune the DLP policy to consider data type and sensitivity

Correct Answer: Tune the DLP policy to consider data type and sensitivity

Tuning the DLP policy to consider data type and sensitivity will reduce false positives by accurately identifying sensitive information. Removing the DLP solution, changing attachment size limits, or requiring approval doesn't address the root cause of false positives. A data classification solution could help with identifying sensitive data but would still require the DLP policy to be tuned.

Join the Elite: Pass Your CISSP

4,400+ questions across all 8 CBK domains

Data Leakage Prevention

Guide on Data Leakage Prevention (DLP)

CISSP - Data Leakage Prevention Example Questions

Question 1

Question 2

Question 3

Join the Elite: Pass Your CISSP