CompTIA Security+ (SY0-501) — Question 308

After a routine audit, a company discovers that engineering documents have been leaving the network on a particular port. The company must allow outbound traffic on this port, as it has a legitimate business use. Blocking the port would cause an outage. Which of the following technology controls should the company implement?

Answer options

• A. NAC
• B. Web proxy
• C. DLP
• D. ACL

Correct answer: C

Explanation

The correct answer is C, DLP, as it focuses on preventing sensitive information from being transmitted outside the network, while still allowing legitimate business traffic. NAC, Web proxy, and ACL do not specifically address the need to monitor and control the flow of sensitive engineering documents, making them less suitable solutions in this scenario.