Certified Data Privacy Solutions Engineer (CDPSE) — Question 81

An organization is designing a new human resources (HR) system. Which of the following should be implemented to BEST enable detection of unauthorized access to personal data?

Answer options

• A. Data loss prevention (DLP) solution
• B. Security information and event management (SIEM) solution
• C. Vulnerability scanning and management software
• D. Web application firewall (WAF)

Correct answer: A

Explanation

A Data Loss Prevention (DLP) solution is specifically designed to monitor and protect sensitive data from unauthorized access and breaches, making it the best choice for detecting unauthorized access to personal data. In contrast, a SIEM solution focuses on collecting and analyzing security event data, while vulnerability scanning identifies weaknesses in systems but does not directly prevent unauthorized access. A WAF is aimed at protecting web applications but may not provide comprehensive monitoring for personal data access.