nerdexam
Isaca

CDPSE · Question #269

An organization is designing a new human resources (HR) system. Which of the following should be implemented to BEST enable detection of unauthorized access to personal data?Data loss prevention (DLP)

The correct answer is A. Data loss prevention (DLP) solution. A DLP solution is specifically designed to monitor, detect, and alert on access to and movement of sensitive data, including personal data. It can identify unauthorized access patterns, unusual data transfers, or attempts to exfiltrate HR data. While a SIEM (option B) aggregates

Privacy Architecture

Question

An organization is designing a new human resources (HR) system. Which of the following should be implemented to BEST enable detection of unauthorized access to personal data?Data loss prevention (DLP) solution

Options

  • AData loss prevention (DLP) solution
  • BSecurity information and event management (SIEM) solution
  • CVulnerability scanning and management software
  • DWeb application firewall (WAF)

How the community answered

(27 responses)
  • A
    81% (22)
  • B
    4% (1)
  • C
    11% (3)
  • D
    4% (1)

Explanation

A DLP solution is specifically designed to monitor, detect, and alert on access to and movement of sensitive data, including personal data. It can identify unauthorized access patterns, unusual data transfers, or attempts to exfiltrate HR data. While a SIEM (option B) aggregates logs and detects broad security events, a DLP is purpose-built for data-level visibility and is the most targeted tool for detecting unauthorized access to personal data specifically. A WAF protects web-layer attacks; vulnerability scanning addresses weaknesses, not active access events.

Topics

#Data loss prevention#Personal data security#Access detection#Privacy controls

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice