Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

Your organization has migrated its email and file collaboration workloads to Microsoft 365. Employees often connect to the service directly from home or on personal mobile devices, so much of the traffic never traverses the corporate network where your existing inline network-based DLP appliances sit. Management wants a data loss prevention capability that can discover and control sensitive information stored in Exchange Online and OneDrive-even when users access the service off-network-without requiring software installation on every endpoint. Which approach best satisfies these requirements?

  • Deploy endpoint DLP agents on all corporate laptops and configure them to monitor file operations and uploads.

  • Require all remote users to connect through the corporate VPN so existing on-premises network DLP appliances can inspect traffic.

  • Rely on Microsoft 365's default encryption for data at rest and in transit to mitigate data-loss risks without additional tooling.

  • Implement an API-based CASB that connects to the Microsoft 365 tenant and enforces DLP policies within the cloud service.

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Data Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot