Question

Your company recently suffered a small data breach caused by an employee emailing themselves a copy of the current customer's names, account numbers, and credit card limits. You are determined that something like this shall never happen again. Which of the following logical security concepts should you implement to prevent a trusted insider from stealing your corporate data?

1) Strong passwords
2) Firewall
3) MDM
4) DLP

Answer 1

To prevent further data breaches, Data Loss Prevention (DLP) should be implemented as it prevents unauthorized transmission of sensitive information. DLP systems protect data in use, in motion, and at rest. Education and strong passwords are also crucial to enhancing security.

Step-by-step explanation:

To prevent a trusted insider from stealing corporate data after a data breach, the logical security concept that should be implemented is Data Loss Prevention (DLP). By definition, DLP systems are designed to detect and prevent unauthorized access and transmission of sensitive information. This ensures that confidential data such as customer names, account numbers, and credit card limits are not sent outside the corporate network without proper authorization. DLP would help oversee and control data that is in use, in motion on the network, and at rest in storage. In addition to DLP, educating employees about the importance of online privacy and security and employing other measures such as strong passwords can help mitigate the risk of further breaches.