CompTIA Security+ (SY0-701) — Question 126

A security administrator is deploying a DLP solution to prevent the exfiltration of sensitive customer data. Which of the following should the administrator do first?

Answer options

• A. Block access to cloud storage websites.
• B. Create a rule to block outgoing email attachments.
• C. Apply classifications to the data.
• D. Remove all user permissions from shares on the file server.

Correct answer: C

Explanation

The correct answer is C because applying classifications to data is fundamental in a DLP strategy, as it enables the identification and protection of sensitive information. The other options, while relevant to data protection, are actions that should be taken after the data classification process has been established.