Exam CISM topic 1 question 967 discussion

i think C can be part of A, isnt it?

Key word in the question is protect. DLP might not be the correct answer here. Why I say that is because the CISM has a very limited set of questions that involve technical tools. I could see them having C be the right answer, but I am going to be picking A if this question comes up. It protects data from both outsider and insider threats.

Although the question is vague as hell, I'll go with DLP just because it is the most comprehensive answer here (followed closely by C)

Is data protection - protect data from being deleted/removed or securing it? if protection is stopping data deletion/removal --> A If protection is security of data -----------------------------> C

encryption should be first and most important action b4 implementing DLP. without encryption data can be exposed. That should be first priority - encrypting data

A. Data loss prevention (DLP).....The question is focused on protecting the data as opposed to ensuring the confidentiality of the data. Even though the two sound similar, when the question doesn't mention confidentiality and focuses mainly on protecting the data, Data Loss Prevention (DLP) will take precedence over Data encryption. If the question had mentioned about ensuring the confidentiality of the data, i would have selected C. Data encryption.

multiple data repositories across different departments - DLP alone won't guarantee anything as data is spread across the organization. Encryption standards as just that standards. - only actionable choice is Data Masking - Data masking is the process of obscuring or de-identifying sensitive data to protect it from unauthorized disclosure or access. This is crucial for organizations that handle large amounts of sensitive data, such as customer records, financial data, and personally identifiable information (PII).

A: Data loss prevention (DLP) as the highest priority for the organization. Data loss prevention focuses on identifying, monitoring, and protecting sensitive data from unauthorized access, leakage, or loss. It helps prevent accidental or intentional data breaches by enforcing policies and controls that restrict the unauthorized transmission or storage of sensitive information.

Both A & C .....possible ...but i vote "A"

A. Data loss prevention (DLP). Data loss prevention (DLP) is a crucial initiative for protecting sensitive data. It helps in detecting and preventing unauthorized access, use, and transmission of sensitive information. Given that the organization has multiple data repositories across different departments, implementing DLP measures can help in ensuring that sensitive data is not leaked, misused, or accessed by unauthorized individuals. It provides a proactive approach to safeguarding data and mitigating potential security breaches.

Data encryption should be top priority because it protects confidentiality and integrity of data at rest and in transit, which also include data exfiltration. Though encryption doesn't prevent exfil itself, and DLP does, if a DLP fails, data that is not encrypted will expose confidential data.