An external Auditor finds that a company's user passwords have no minimum length. The company is currently using two identity providers: • AWS IAM federated with on-premises Active Directory • Amazon Cognito user pools...
A company plans to use custom AMIs to launch Amazon EC2 instances across multiple AWS accounts in a single Region to perform security monitoring and analytics tasks. The EC2 instances are launched in EC2...
A Security Engineer has several thousand Amazon EC2 instances split across production and development environments. Each instance is tagged with its environment. The Engineer needs to analyze and patch all the development EC2 instances...
A company has external vendors that must deliver files to the company. These vendors have cross-account that gives them permission to upload objects to one of the company's S3 buckets. What combination of steps...
A company has hired a third-party security auditor, and the auditor needs read-only access to all AWS resources and logs of all VPC records and events that have occurred on AWS. How can the...
A company has a large set of keys defined in AWS KMS. Their developers frequently use the keys for the applications being developed. What is one of the ways that can be used to...
Which of the below services can be integrated with the AWS Web application firewall service. Choose 2 answers from the options given belowA . AWS CloudfrontB . AWS LambdaC . AWS Application Load BalancerD...
A company is planning on using AWS for hosting their applications. They want complete separation and isolation of their production, testing and development environments. Which of the following is an ideal way to design...
Which of the following are valid configurations for using SSL certificates with Amazon CloudFront? (Select THREE)A . Default AWS Certificate Manager certificateB . Custom SSL certificate stored in AWS KMSC . Default CloudFront certificateD...
You have an EBS volume attached to an EC2 Instance which uses KMS for Encryption. Someone has now gone ahead and deleted the Customer Key which was used for the EBS encryption. What should...
