Your organization is in the process of deploying a Data Loss Prevention (DLP) solution across its Azure environment to safeguard sensitive information. As the Cybersecurity Architect, you are tasked with defining the security requirements to ensure the DLP solution is both effective and compliant with industry standards. The organization handles a variety of data types, including personally identifiable information (PII), financial records, and intellectual property, across endpoints, networks, and cloud environments. Given the need to balance security with operational efficiency, which of the following approaches BEST meets the organization's requirements? (Choose one option.)

Simulated

Deploy a DLP solution that focuses exclusively on encrypting data at rest and in transit, without implementing any policy-based controls or monitoring for data exfiltration attempts.

0.0%

Limit the DLP solution's scope to monitoring and blocking outbound emails containing sensitive keywords, ignoring other data transfer mechanisms and storage locations.

0.0%

Implement a DLP solution that provides comprehensive coverage across endpoints, networks, and cloud environments, with dynamically applied policies based on data sensitivity and user roles, including monitoring for both external and insider threats.

100.0%

Restrict the DLP solution to only scan for PII in documents stored in SharePoint Online, excluding other data types and platforms from protection.

0.0%

Microsoft Cybersecurity Architect Expert SC-100

Comments

Get started today