Which of the following is the BEST control to help prevent sensitive data leaving an organization via email?
Which of the following is the BEST control to help prevent sensitive data leaving an organization via email?
Blocking outbound emails sent without encryption is the best control to help prevent sensitive data from leaving an organization via email. This approach ensures that any sensitive information that needs to be sent via email is protected by encryption, thereby reducing the risk of it being intercepted or accessed by unauthorized individuals. Ensuring encryption helps maintain the confidentiality and integrity of the data.
A is correct. Enforcing encryption for outgoing email does not help with preventing users from sharing sensitive information
On B, Block outbound, only allow encryption
While scanning outgoing emails (option A) can be a valuable control for detecting certain types of sensitive information in emails, it may not be foolproof and can sometimes generate false positives or miss certain types of sensitive data. Therefore, providing encryption solutions for employees is generally considered the most effective control for preventing sensitive data from leaving an organization via email.
A. Scanning outgoing emails: This control allows for proactive detection of sensitive data within outgoing email messages. By implementing a data loss prevention (DLP) solution that scans outgoing email content, the organization can identify and potentially block emails containing sensitive information, preventing unauthorized data exfiltration.
The BEST control to help prevent sensitive data leaving an organization via email is 'Blocking outbound emails sent without encryption.' This control ensures that all sensitive information is protected by encryption and reduces the risk of sensitive data being intercepted or intercepted by unauthorized individuals.
I think A is right. Scanning is work as DLP.
should be B
But the data will be leaked
D. Blocking outbound emails sent without encryption is the right answer.