Which of the following is the MOST reliable way for an IS auditor to evaluate the operational effectiveness of an organization's data loss prevention (DLP) controls?
Which of the following is the MOST reliable way for an IS auditor to evaluate the operational effectiveness of an organization's data loss prevention (DLP) controls?
Verifying that confidential files cannot be transmitted to a personal USB device is the most reliable way to evaluate the operational effectiveness of an organization's data loss prevention (DLP) controls. This action directly tests one of the core functions of a DLP system—preventing unauthorized data transfers. Merely ensuring the software is installed (option C) does not confirm that it is functioning correctly in practice.
Its B. One of the core functions of a DLP is preventing unauthorized data movements.
D is the right answer. Review data classification levels based on industry best practice
operational effectiveness of an organization's data loss prevention (DLP) controls ---- so it should be B
USB media storage is a very narrow area of DLP, most of the data happening by mistake are don by attaching the wrong doc in an email
D is correct. https://www.isaca.org/resources/isaca-journal/issues/2018/volume-1/data-loss-preventionnext-steps
why though?
there is nothing about Data Classification in the article behind your link
I think is B as it says operational effectiveness. C is more in design.
While verifying the installation of DLP software on all computer systems (option C) is important, it does not directly assess the functionality or effectiveness of the DLP controls in preventing data loss incidents. Testing specific functionalities, such as preventing data transfers to USB devices, provides more direct evidence of the operational effectiveness of the DLP controls.
Testing samples helps to determine operational effectiveness