CompTIA CASP+ (CAS-004) — Question 286

The Chief Security Officer (CSO) requested the security team implement technical controls that meet the following requirements:

• Monitors traffic to and from both local NAS and cloud-based file repositories
• Prevents on-site staff who are accessing sensitive customer PII documents on file repositories from accidentally or deliberately sharing sensitive documents on personal SaaS solutions
• Uses document attributes to reduce false positives
• Is agentless and not installed on staff desktops or laptops

Which of the following when installed and configured would BEST meet the CSO’s requirements? (Choose two.)

Answer options

• A. DLP
• B. NGFW
• C. UTM
• D. UEBA
• E. CASB
• F. HIPS

Correct answer: A, E

Explanation

DLP (Data Loss Prevention) is designed to monitor and protect sensitive data from unauthorized sharing, making it a suitable choice for the CSO's requirements. CASB (Cloud Access Security Broker) addresses cloud-based security needs, ensuring that sensitive information is not mishandled in personal SaaS applications. The other options, such as NGFW and UTM, primarily focus on network security but do not specifically address the data loss prevention and document monitoring requirements outlined by the CSO.