Exam CCSP topic 1 question 227 discussion

But DLP is an effective solution to prevent malicious insider/user from sending sensitive data out of the network.

A. Showing due diligence

While a DLP solution does help demonstrate that an organization is taking proactive steps toward data protection (which can be useful in showing due diligence), its primary goals are to prevent unauthorized data exfiltration (including threats from malicious insiders), ensure regulatory compliance, and manage and minimize risk associated with data loss. "Showing due diligence" is more of a legal or reputational benefit rather than a direct technical or operational objective of the DLP solution

The answer is correct (Insider threat prevention is not among the goals of a DLP system). The goals of a DLP strategy for an organization are to manage and minimize risk, maintain compliance with regulatory requirements, and show due diligence on the part of the application and data owner. Carter, Daniel. CCSP Certified Cloud Security Professional All-in-One Exam Guide, Third Edition (p. 101). McGraw Hill LLC. Kindle Edition.

B. Preventing malicious insiders

Not a very clear question, you could argue for both A & B to be correct, in my opinion A is correct

I believe the number 1 threat/ security issue has to do with internal risks.

Question is "NOT one of the main intended goals of a DLP solution?" !! Whats does "Showing Due Diligence" have anything to do with DLP? Shudnt this be the correct answer ?

"Showing due diligence" to what ? Question/answer is incorrect. DLP is heavily used to protect from insider disclosures. CCSP Official guide says "DLP can protect from malicious disclosure" which would equate malicious insider. DLP goals Additional security Policy enforcement Enhanced monitoring Regulatory compliance

DLP is not a breach detection technology hence B is correct