Certified Information Systems Auditor (CISA) — Question 68

Which of the following is the BEST control to help prevent sensitive data leaving an organization via email?

Answer options

• A. Scanning outgoing emails
• B. Blocking outbound emails sent without encryption
• C. Conducting periodic phishing tests
• D. Providing encryption solutions for employees

Correct answer: B

Explanation

Blocking outbound emails sent without encryption ensures that sensitive data is not transmitted without proper security measures in place, making it the best control. While scanning outgoing emails can identify sensitive data, it does not prevent it from being sent. Periodic phishing tests and providing encryption solutions are beneficial but do not directly stop unencrypted sensitive data from leaving the organization.