CompTIA CySA+ (CS0-002) — Question 201

A security officer needs to find a solution to the current data privacy and protection gap found in the last security assessment. Which of the following is the most cost-effective solution?

Answer options

• A. Require users to sign NDAs.
• B. Create a data minimization plan.
• C. Add access control requirements.
• D. Implement a data loss prevention solution.

Correct answer: B

Explanation

The most cost-effective solution is to create a data minimization plan, as it focuses on reducing unnecessary data collection, thus decreasing risk and compliance costs. In contrast, requiring NDAs, adding access control, or implementing a data loss prevention solution may incur higher costs without directly addressing the root of the privacy gap.