CompTIA SecurityX (CAS-005) — Question 300

An organization recently implemented a new email DLP solution. Emails sent from company email addresses to matching personal email addresses generated a large number of alerts, but the content of the emails did not include company data. The security team needs to reduce the number of emails sent without blocking all emails to common personal email services. Which of the following should the security team implement first?

Answer options

• A. Automatically quarantine outgoing email.
• B. Create an acceptable use policy.
• C. Enforce email encryption standards.
• D. Perform security awareness training focusing on phishing.

Correct answer: B

Explanation

Creating an acceptable use policy is essential because it sets clear guidelines for employees on how to handle company data in emails, potentially reducing unnecessary alerts. The other options, while important, do not directly address the immediate issue of excessive alerts without blocking emails, making them less effective as a first step.