CISA Exam - Question 560

I think answer is B because it's asking to prevent the transfer of files so it has to be stopped. Application level firewall should be able to do it.

i also think B could be right answer

answer is B

How A is the correct answer here. By encrypting something doesn't stop it from being transferred.. Who provides these answers??

should be B, A is not preventive measure.

application level firewalls can be configured to block specific types of traffic, such as file transfers, while allowing other types of traffic

Correct answer is C. B is not a solution, app level firewall is not a DLP solution. If IM is allowed in the org, app level firewall wont prevent sharing sensitive files over IM. What you need is a DLP solution, but that is not part of the answers, so Policy is the next best choice.

B is correct. example.. WAF.. deny rule of file

While file-level encryption (option A) can help protect the confidentiality of files during transmission, it does not specifically prevent the transfer of files to external parties through IM applications. Encryption ensures that files are securely transmitted, but it does not control whether files are sent externally.

Not A, encryption won't stop transfer... Not B, App FW will stop the IM app, which is not our goal It is C