Question

After a recent attack, management decided to implement an egress monitoring system that will prevent data exfiltration. which of the following is the best choice?

a. network intrusion detection system (nids)
b. network intrusion prevention system (nips)
c. firewall
d. data loss prevention system

Answer 1

The best choice to prevent data exfiltration after a recent attack would be a data loss prevention system (DLP). An alternative option is a network intrusion prevention system (NIPS). Both can work with other security measures for a robust defense against data exfiltration.

Step-by-step explanation:

The best choice to prevent data exfiltration in this case would be a data loss prevention system (DLP). A DLP system is specifically designed to monitor and prevent the unauthorized transmission of sensitive data. It can detect and block data exfiltration attempts by inspecting network traffic and applying predefined policies.

An alternative option to consider is a network intrusion prevention system (NIPS). While a NIPS focuses on protecting against unauthorized access and attacks, it can also detect and prevent certain types of data exfiltration.

Both a DLP and a NIPS can work in conjunction with other security measures such as firewalls to provide a robust defense against data exfiltration.