CompTIA CySA+ (CS0-002) — Question 305

An organization needs to limit its exposure to accidental disclosure when employees send emails that contain personal information to recipients outside the company. Which of the following technical controls would BEST accomplish this goal?

Answer options

• A. DLP
• B. Encryption
• C. Data masking
• D. SPF

Correct answer: A

Explanation

DLP (Data Loss Prevention) is specifically designed to prevent the unauthorized sharing of sensitive data, making it the best option for limiting accidental disclosures. While encryption protects data in transit, it does not prevent the sending of sensitive information itself. Data masking alters data to protect it, but doesn’t prevent accidental sharing. SPF (Sender Policy Framework) is used for email authentication and does not address data protection.