Certified Information Security Manager (CISM) — Question 643

What should be the FIRST step when implementing data loss prevention (DLP) technology?

Answer options

• A. Build a business case
• B. Perform due diligence with vendor candidates
• C. Classify the organization's data
• D. Perform a cost benefit analysis

Correct answer: C

Explanation

The correct first step is to classify the organization's data, as understanding what data needs protection is crucial for effective DLP implementation. The other options, while important, should follow after the data classification process to ensure that the DLP strategy is aligned with the organization's specific data protection needs.