Which of the following would be the BEST way to help ensure the effectiveness of a data loss prevention (DLP) control that has been implemented to prevent the loss of credit card data?
A.
Reviewing logs for unauthorized data transfers
B.
Configuring the DLP control to block credit card numbers
C.
Testing the transmission of credit card numbers
C. Testing the transmission of credit card numbers
The best way to ensure the effectiveness of a DLP control, especially one that's intended to prevent the loss of sensitive data like credit card numbers, would be to test the system by attempting to transmit credit card numbers. If the system works as intended, it should detect and block such attempts, thereby proving its effectiveness.
A. While reviewing logs for unauthorized data transfers is an important activity for overall security, it does not proactively test the DLP control's ability to prevent loss of credit card data.
B. Configuring the DLP control to block credit card numbers is a necessary setup step, but it doesn't ensure the effectiveness of the control. The effectiveness can only be ensured by testing.
D. Testing the DLP rule change control process could be important to ensure changes to rules are properly managed, but it does not directly validate the effectiveness of the DLP control in preventing the loss of credit card data.
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
01010100
10 months agomraiyan
11 months, 3 weeks agojohn_boogieman
1 year, 3 months agojohn_boogieman
1 year, 3 months agoZiggybooboo
1 year, 4 months agoSuchib
1 year, 4 months ago