CompTIA CySA+ (CS0-002) — Question 270
An organization has the following policy statements:
✑ All emails entering or leaving the organization will be subject to inspection for malware, policy violations, and unauthorized content.
✑ All network activity will be logged and monitored.
✑ Confidential data will be tagged and tracked.
✑ Confidential data must never be transmitted in an unencrypted form.
✑ Confidential data must never be stored on an unencrypted mobile device.
Which of the following is the organization enforcing?
Answer options
- A. Acceptable use policy
- B. Data privacy policy
- C. Encryption policy
- D. Data management policy
Correct answer: D
Explanation
The organization is enforcing a Data management policy as it encompasses the management and protection of confidential data, including logging, monitoring, and ensuring data is not stored or transmitted unencrypted. The other options, while related, do not specifically address the comprehensive handling and safeguarding of data as outlined in the statements.