What is Data Loss Prevention (DLP)?
D3 ยท Architecture ยท CompTIA Security+ SY0-701DLP (Data Loss Prevention) is a set of tools and processes that monitor, detect, and prevent sensitive data from being transmitted, moved, or accessed in unauthorized ways.
Types: Network DLP (monitors traffic leaving the network), Endpoint DLP (monitors activity on devices โ USB, email, clipboard), Cloud DLP (monitors cloud storage and SaaS apps).
Detects: SSNs, credit card numbers, PHI, intellectual property via pattern matching and ML.
Types: Network DLP (monitors traffic leaving the network), Endpoint DLP (monitors activity on devices โ USB, email, clipboard), Cloud DLP (monitors cloud storage and SaaS apps).
Detects: SSNs, credit card numbers, PHI, intellectual property via pattern matching and ML.
DLP prevents both malicious exfiltration and accidental data leaks. On the exam, DLP is the answer when you need to prevent sensitive data from leaving the organization โ especially via email, USB, or cloud uploads. Pairs with data classification.