nerdexam
ExamsCAS-002Questions#7
CompTIA

CAS-002 · Question #7

CAS-002 Question #7: Real Exam Question with Answer & Explanation

The correct answer is B: Sanitize outgoing content.. Sanitizing outgoing content is an active technical control that inspects and blocks sensitive data in emails before they leave the organization.

Question

The Chief Information Officer (CIO) comes to the security manager and asks what can be done to reduce the potential of sensitive data being emailed out of the company. Which of the following is an active security measure to protect against this threat?

Options

  • ARequire a digital signature on all outgoing emails.
  • BSanitize outgoing content.
  • CImplement a data classification policy.
  • DImplement a SPAM filter.

Explanation

Sanitizing outgoing content is an active technical control that inspects and blocks sensitive data in emails before they leave the organization.

Common mistakes.

  • A. Digital signatures verify the authenticity and integrity of the sender but do not inspect or prevent the content of sensitive data from being transmitted.
  • C. A data classification policy is an administrative control that defines how data should be handled; it does not technically intercept or block emails containing sensitive data.
  • D. A SPAM filter is an inbound control designed to block unwanted or malicious incoming email and provides no protection against outbound data exfiltration.

Concept tested. Active DLP outbound email content sanitization

Reference. https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-learn-about-dlp

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice