187k views
4 votes
A Chief Information Security Officer (CISO) is concerned the development team, which consists of contractors, has too much access to customer data. Developers use personal workstations, giving the company little to no visibility into the development activities.

Which of the following would be BEST to implement to alleviate the CISO's concern?
A. DLP
B. Encryption
C. Test data
D. NDA

User Maliha
by
8.0k points

1 Answer

3 votes
D. NDA (Non-disclosure agreement).

Encryption, while helpful, doesn’t prevent developers spilling your trade secrets everywhere. (Although there are some protections for this)
User Nevil
by
7.6k points