Which of the following Cisco Cloudlock custom policy categories monitors content based on a regular expression that is created by an administrator?

A. Custom Regex

B. Event Analysis

C. Context-Only

D. Salesforce Report Export Activity

Explanation:
Of the available choices, the Cisco Cloudlock Custom Regex custom policy category monitors content based on a regular expression that is created by an administrator. Cloudlock policies are rules that automatically generate Cloudlock incidents. Incidents provide information to administrators about policy violations that have occurred. For example, data loss prevention (DLP) incidents contain data ownership information, historical information about the data, and information about where the data is shared. Cloudlock incidents are generated when all three of the following conditions are met:

• An object or asset has been created or changed.
• The object or asset is monitored by a Cloudlock policy.
• The object or asset is in violation of the Cloudlock policy that is monitoring it.

In addition to predefined policies, administrators can define custom Cloudlock policies that are based on one of the following four categories:

• Context-Only is a policy that ignores object or asset content and focuses instead on how widely the object or asset has been shared in addition to other data.
• Custom Regex is a policy that relies on a custom regular expression defined by an administrator in order to monitor objects or assets.
• Event Analysis is a policy that monitors platform events instead of specific assets or objects. For example, an Event Analysis policy might monitor user authentication events.
• Salesforce Report Export Activity is a policy that monitors Salesforce-specific activity as it relates to the Salesforce Customer Relationship Manager (CRM) reporting engine.