A financial services company wants to ensure that all customer data uploaded on its data lake on Amazon Simple Storage Service (Amazon S3) always stays private. Which of the following is the MOST efficient solution to address this compliance requirement?Question 19Answera.Use Amazon S3 Block Public Access to ensure that all Amazon S3 resources stay privateb.Use Amazon CloudWatch to ensure that all Amazon S3 resources stay privatec.Trigger a lambda function every time an object is uploaded on Amazon S3. The lambda function should change the object settings to make sure it stays privated.Set up a high-level advisory committee to review the privacy settings of each object uploaded into Amazon S3
Question
A financial services company wants to ensure that all customer data uploaded on its data lake on Amazon Simple Storage Service (Amazon S3) always stays private. Which of the following is the MOST efficient solution to address this compliance requirement?Question 19Answera.Use Amazon S3 Block Public Access to ensure that all Amazon S3 resources stay privateb.Use Amazon CloudWatch to ensure that all Amazon S3 resources stay privatec.Trigger a lambda function every time an object is uploaded on Amazon S3. The lambda function should change the object settings to make sure it stays privated.Set up a high-level advisory committee to review the privacy settings of each object uploaded into Amazon S3
Solution
The most efficient solution to ensure that all customer data uploaded on the data lake on Amazon Simple Storage Service (Amazon S3) always stays private is to use Amazon S3 Block Public Access. This feature provides settings for access points, buckets, and accounts to help you manage public access to Amazon S3 resources. By default, new buckets, access points, and objects don't allow public access, but users or administrators can modify bucket policies or object permissions to allow public access. S3 Block Public Access provides settings that override these policies and permissions so that you can limit public access to your data.
Similar Questions
A company is storing sensitive customer data in an Amazon S3 bucket. The company wants to protect the data from accidental deletion or overwriting. Which S3 feature should the company use to meet these requirements?a.S3 bucket policiesb.S3 Versioningc.S3 Lifecycle rulesd.S3 server-side encryption
A financial services company must meet compliance requirements for storing multiple copies of data in geographically distant locations using Amazon S3. What is the MOST resource-efficient solution?Question 61Answera.Use S3 same-region replication (S3 SRR)b.Trigger an AWS Lambda function for every new object to write data to another Regionc.Run a daily job on an EC2 instance to copy objects to another Regiond.Use S3 cross-region replication (S3 CRR)
Which of the following can be used to protect data at rest on Amazon S3?A. VersioningB. PermissionsC. Automatic backupsD. ConversionE. Decryptiona)A and Eb)A and Dc)B and Ed)A and Be)A and C
A multi-national company has its business-critical data stored on a fleet of Amazon Elastic Compute Cloud (Amazon EC2) instances, in various countries, configured in region-specific compliance rules. To demonstrate compliance, the company needs to submit historical configurations on a regular basis. Which AWS service is best suited for this requirement?Question 62Answera.Amazon GuardDutyb.AWS CloudTrailc.AWS Configd.Amazon Macie
A company wants to save costs by archiving data that is no longer frequently accessed by end users. Which Amazon S3 feature will meet this requirement?a.S3 Versioningb.S3 Inventoryc.S3 Lifecycled.S3 Object Lock
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.