DOP-C02 · Question #184
DOP-C02 Question #184: Real Exam Question with Answer & Explanation
The correct answer is A: Exclude S3 buckets that contain CloudTrail logs from automated discovery.. https://aws.amazon.com/blogs/security/how-to-use-amazon-macie-to-reduce-the-cost-of- discovering-sensitive-data/
Question
A company has a new AWS account that teams will use to deploy various applications. The teams will create many Amazon S3 buckets for application-specific purposes and to store AWS CloudTrail logs. The company has enabled Amazon Macie for the account. A DevOps engineer needs to optimize the Macie costs for the account without compromising the account's functionality. Which solutions will meet these requirements? (Choose two.)
Options
- AExclude S3 buckets that contain CloudTrail logs from automated discovery.
- BExclude S3 buckets that have public read access from automated discovery.
- CConfigure scheduled daily discovery jobs for all S3 buckets in the account.
- DConfigure discovery jobs to include S3 objects based on the last modified criterion.
- EConfigure discovery jobs to include S3 objects that are tagged as production only.
Explanation
https://aws.amazon.com/blogs/security/how-to-use-amazon-macie-to-reduce-the-cost-of- discovering-sensitive-data/
Topics
Community Discussion
No community discussion yet for this question.