CDPSE · Question #269
An organization is designing a new human resources (HR) system. Which of the following should be implemented to BEST enable detection of unauthorized access to personal data?Data loss prevention (DLP)
The correct answer is A. Data loss prevention (DLP) solution. A DLP solution is specifically designed to monitor, detect, and alert on access to and movement of sensitive data, including personal data. It can identify unauthorized access patterns, unusual data transfers, or attempts to exfiltrate HR data. While a SIEM (option B) aggregates
Question
An organization is designing a new human resources (HR) system. Which of the following should be implemented to BEST enable detection of unauthorized access to personal data?Data loss prevention (DLP) solution
Options
- AData loss prevention (DLP) solution
- BSecurity information and event management (SIEM) solution
- CVulnerability scanning and management software
- DWeb application firewall (WAF)
How the community answered
(27 responses)- A81% (22)
- B4% (1)
- C11% (3)
- D4% (1)
Explanation
A DLP solution is specifically designed to monitor, detect, and alert on access to and movement of sensitive data, including personal data. It can identify unauthorized access patterns, unusual data transfers, or attempts to exfiltrate HR data. While a SIEM (option B) aggregates logs and detects broad security events, a DLP is purpose-built for data-level visibility and is the most targeted tool for detecting unauthorized access to personal data specifically. A WAF protects web-layer attacks; vulnerability scanning addresses weaknesses, not active access events.
Topics
Community Discussion
No community discussion yet for this question.