Certified Information Systems Auditor (CISA) — Question 89

Which of the following methods would BEST help detect unauthorized disclosure of confidential documents sent over corporate email?

Answer options

• A. Monitoring all emails based on pre-defined criteria
• B. Reporting all outgoing emails that are marked as confidential
• C. Requiring all users to encrypt documents before sending
• D. Installing firewalls on the corporate network

Correct answer: A

Explanation

Option A is the best choice as it involves actively monitoring emails against set criteria, allowing for the detection of unauthorized disclosures. Option B, while helpful, relies on users marking emails as confidential, which may not always happen. Option C does enhance security but does not directly monitor for unauthorized disclosures. Option D, installing firewalls, is more about network security and does not specifically address email content monitoring.