CompTIA CySA+ (CS0-002) — Question 244

Members of the sales team are using email to send sensitive client lists with contact information to their personal accounts. The company's AUP and code of conduct prohibits this practice. Which of the following configuration changes would improve security and help prevent this from occurring?

Answer options

• A. Configure the DLP transport rules to provide deep content analysis.
• B. Put employees' personal email accounts on the mail server on a blocklist.
• C. Set up IPS to scan for outbound emails containing names and contact information.
• D. Use Group Policy to prevent users from copying and pasting information into emails.
• E. Move outbound emails containing names and contact information to a sandbox for further examination.

Correct answer: A

Explanation

The correct answer, A, emphasizes the importance of Data Loss Prevention (DLP) transport rules that can analyze email content deeply to identify sensitive information before it leaves the organization. Options B and C might restrict access or detect some issues, but they do not actively prevent the sending of sensitive data. Option D limits user behavior but does not address the underlying issue of sensitive data transmission, while E introduces an additional step that could delay communication without preventing the act itself.