SY0-501 · Question #182
SY0-501 Question #182: Real Exam Question with Answer & Explanation
The correct answer is C: Conduct security awareness training. Data loss without physical break-ins typically indicates insider threats or unintentional employee behavior, making security awareness training the most effective countermeasure.
Question
The chief Security Officer (CSO) has reported a rise in data loss but no break ins have occurred. By doing which of the following is the CSO most likely to reduce the number of incidents?
Options
- AImplement protected distribution
- BEmpty additional firewalls
- CConduct security awareness training
- DInstall perimeter barricades
Explanation
Data loss without physical break-ins typically indicates insider threats or unintentional employee behavior, making security awareness training the most effective countermeasure.
Common mistakes.
- A. Protected distribution refers to securing physical cabling and transmission lines from interception, which does not address data loss caused by insider behavior or user error.
- B. Adding firewalls addresses external network-based threats, but since no break-ins occurred, the threat vector is internal and firewalls would not prevent data loss from insiders or negligent employees.
- D. Perimeter barricades are physical security controls that prevent unauthorized physical access, but they are irrelevant when no physical intrusions have been reported as the source of data loss.
Concept tested. Security awareness training to mitigate insider data loss
Community Discussion
No community discussion yet for this question.