I'm assuming the question here is that - whether or not can DLP flag, facilitate or trigger encryption when certain conditions are met/violated.
Since DLP is not an Encryption Software it does not encrypt anything as a built-in functionality however you could always use Flex Response on Endpoint to trigger a pre-scripted python plug-in.
For this to work - the systems you are dealing should already have an encryption/full-disk encryption application installed that suuports command line management (which could be embedded in your python script.)
For example the flow should be:
- Create a Policy in DLP to match for Removable Drives (optionally you could add a detection condition if you wish to trigger this detection only in certain cases where confidential data is detected)
- Ensure a Encryption software is installed on the system which supports a command line syntax to trigger removable drive encryption
- Create a Python Plugin that includes syntax to trigger forced removable drive encryption
- Create a Response Rule and add it to the Policy which Triggers the created Python Plugin via Flex-Response