CompTIA Security+ (SY0-601) — Question 594

The Chief Information Security Officer wants to put security measures in place to protect PH. The organization needs to use its existing labeling and classification system to accomplish this goal. Which of the following would most likely be configured to meet the requirements?

Answer options

• A. Tokenization
• B. S/MIME
• C. DLP
• D. MFA

Correct answer: C

Explanation

Data Loss Prevention (DLP) is specifically designed to monitor and protect sensitive information based on its classification, making it the most suitable option for enforcing security measures around PH. Tokenization, S/MIME, and MFA serve different purposes, such as data obfuscation, secure email communication, and user authentication, respectively, and do not directly utilize the labeling and classification system in the same way DLP does.