A company recently deployed an agent-based DLP solution to all laptops in the environment. The DLP solution is configured to restrict the following:

• USB ports

• FTP connections

• access to cloud-based storage sites

• On going to email attachments

• saving data on the local C: drive

Despite these restrictions highly confidential data was extracted from a secure file share in the research Department. Which of the following should be security team Implement first?

1. Application whitelisting for all company-owned devices

2. A secure vdi environment for research Department employees

3. NIDS/NIPS on the network segments used by the research Department

4. Bluetooth restrictions on all laptops