A financial institution wants to reduce the risk of sensitive customer data exfiltration by employees. Which of the following would be the MOST effective measure to implement?
Disabling unused physical and logical service ports company-wide.
Implementing monitoring and blocking of suspicious data transfers.
Enforcing the use of strong encryption protocols for data at rest.
Enabling biometric authentication on all data systems.
Setting up a system that monitors, detects, and blocks potentially unauthorized data transmissions can dramatically lower the likelihood of sensitive information being leaked or transferred outside the company by an insider with legitimate access. While biometric authentication adds a layer of security, it does not prevent data exfiltration by authenticated users. Disabling unused service ports and enforcing strong encryption enhance security but are not the most direct or effective controls for preventing the deliberate transfer of sensitive data by authorized insiders.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is data exfiltration, and why is it a concern?
Open an interactive chat with Bash
How does monitoring and blocking suspicious data transfers work?
Open an interactive chat with Bash
Why aren’t biometric authentication or encryption protocols enough to prevent data exfiltration?