Exam CISA topic 1 question 442 discussion

blocking outbound emails sent without encryption aligns with ISACA CISA standards for information security and data protection. According to the CISA (Certified Information Systems Auditor) guidelines, preventive controls (such as blocking unencrypted emails containing sensitive information) are critical for protecting sensitive data and ensuring compliance with data privacy and confidentiality requirements. The idea is to proactively prevent unauthorized or insecure transmission of sensitive information.

While scanning outgoing emails (option A) can be a valuable control for detecting certain types of sensitive information in emails, it may not be foolproof and can sometimes generate false positives or miss certain types of sensitive data. Therefore, providing encryption solutions for employees is generally considered the most effective control for preventing sensitive data from leaving an organization via email.

A. Scanning outgoing emails: This control allows for proactive detection of sensitive data within outgoing email messages. By implementing a data loss prevention (DLP) solution that scans outgoing email content, the organization can identify and potentially block emails containing sensitive information, preventing unauthorized data exfiltration.

A is correct. Enforcing encryption for outgoing email does not help with preventing users from sharing sensitive information

On B, Block outbound, only allow encryption

The BEST control to help prevent sensitive data leaving an organization via email is 'Blocking outbound emails sent without encryption.' This control ensures that all sensitive information is protected by encryption and reduces the risk of sensitive data being intercepted or intercepted by unauthorized individuals.

I think A is right. Scanning is work as DLP.

should be B

D. Blocking outbound emails sent without encryption is the right answer.