CompTIA CASP+ (CAS-004) — Question 7

A security engineer needs to recommend a solution that will meet the following requirements:
✑ Identify sensitive data in the provider's network
✑ Maintain compliance with company and regulatory guidelines
✑ Detect and respond to insider threats, privileged user threats, and compromised accounts
✑ Enforce datacentric security, such as encryption, tokenization, and access control
Which of the following solutions should the security engineer recommend to address these requirements?

Answer options

• A. WAF
• B. CASB
• C. SWG
• D. DLP

Correct answer: D

Explanation

The correct answer is DLP because it specifically focuses on identifying and protecting sensitive data, ensuring compliance, and mitigating insider threats. In contrast, WAF, CASB, and SWG serve different purposes such as web application security, cloud access security, and secure web gateway functions, which do not comprehensively address the outlined requirements.