CompTIA CASP+ (CAS-004) — Question 405

A security engineer is implementing DLP. Which of the following should the security engineer include in the overall DLP strategy?

Answer options

• A. Tokenization
• B. Network traffic analysis
• C. Data classification
• D. Multifactor authentication

Correct answer: C

Explanation

Data classification is essential for DLP as it helps identify and categorize sensitive information that needs protection. Tokenization and multifactor authentication are security measures, but they do not specifically address data loss prevention. Network traffic analysis is useful for monitoring, but it does not directly contribute to the classification of data.