nerdexam
GIAC

GCED · Question #24

GCED Question #24: Real Exam Question with Answer & Explanation

The correct answer is D. Running custom keyword scans on outbound SMTP traffic from the mail server. See the full explanation below for the reasoning.

Question

A company classifies data using document footers, labeling each file with security labels "Public", "Pattern", or "Company Proprietary". A new policy forbids sending "Company Proprietary" files via email. Which control could help security analysis identify breaches of this policy?

Options

  • AMonitoring failed authentications on a central logging device
  • BEnforcing TLS encryption for outbound email with attachments
  • CBlocking email attachments that match the hashes of the company's classification templates
  • DRunning custom keyword scans on outbound SMTP traffic from the mail server

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCED Practice