What system can detect sensitive information in email attachments that violate company policy?

Data Loss Prevention (DLP) systems are designed specifically to identify and protect sensitive information, such as personally identifiable information (PII), payment card information, and other proprietary data. These systems monitor and analyze data that is being transmitted or stored and are particularly effective at scanning email attachments to detect content that may violate company policy or regulatory requirements.

In the context of email, a DLP system examines not only the content of emails but also the attachments, allowing organizations to enforce their data protection policies by flagging, blocking, or encrypting sensitive data before it leaves the organization. This proactive approach helps to prevent data breaches and ensures compliance with legal regulations.

Other options, while related to network security and email management, do not directly serve the purpose of detecting sensitive information in email attachments in a comprehensive manner. Email filtering can help sort or block unwanted emails but typically does not involve deep content analysis for compliance purposes. Firewalls focus on controlling incoming and outgoing network traffic based on predetermined security rules, while email encryption is designed to protect the confidentiality of email content rather than identify sensitive information in the first place. This is why Data Loss Prevention stands out as the correct solution for the scenario described.