nerdexam
ExamsSY0-301Questions#520
CompTIA

SY0-301 · Question #520

SY0-301 Question #520: Real Exam Question with Answer & Explanation

The correct answer is D: DLP. DLP (Data Loss Prevention) is specifically designed to detect and prevent unauthorized copying, transfer, or exfiltration of sensitive data - including to removable media like USB drives. DLP can block unapproved devices from copying documents based on policy. Content filtering (

Question

A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario?

Options

  • AContent filtering
  • BIDS
  • CAudit logs
  • DDLP

Explanation

DLP (Data Loss Prevention) is specifically designed to detect and prevent unauthorized copying, transfer, or exfiltration of sensitive data - including to removable media like USB drives. DLP can block unapproved devices from copying documents based on policy. Content filtering (A) controls web/email content, not removable media. IDS (B) detects intrusions but cannot block data transfers to USB. Audit logs (C) record events after the fact but do not actively prevent data from being copied.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice