SY0-501 · Question #329
SY0-501 Question #329: Real Exam Question with Answer & Explanation
The correct answer is C: DLP u. To prevent specific engineering documents from leaving the network while allowing legitimate traffic on the same port, the company should implement Data Loss Prevention (DLP).
Question
After a routine audit, a company discovers that engineering documents have been leaving the network on a particular port. The company must allow outbound traffic on this port, as it has a legitimate business use. Blocking the port would cause an outage. Which of the following technology controls should the company implement?
Options
- ANAC
- BWeb proxy
- CDLP u
- DACL
Explanation
To prevent specific engineering documents from leaving the network while allowing legitimate traffic on the same port, the company should implement Data Loss Prevention (DLP).
Common mistakes.
- A. Network Access Control (NAC) primarily regulates which devices or users can connect to a network, not the content of the data they transmit once access is granted.
- B. A web proxy primarily manages and filters web (HTTP/S) traffic, and while some advanced solutions may have content inspection capabilities, it is not the primary or most direct solution for preventing specific documents from leaving on an arbitrary port.
- D. An Access Control List (ACL) would block or allow traffic based on port, protocol, or IP address, which would disrupt legitimate business use of the port and cause an outage as stated in the problem.
Concept tested. Data Loss Prevention (DLP) for sensitive content exfiltration
Reference. https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-learn-about-dlp
Community Discussion
No community discussion yet for this question.