Browse Exams Pricing

ExamsDOP-C02Questions

DOP-C02 Exam Questions

498 real DOP-C02 exam questions with expert-verified answers and explanations. Page 2 of 10.

Question #52Reliability & Resilience
A company runs a database on a single Amazon EC2 instance in a development environment. The data is stored on separate Amazon EBS volumes that are attached to the EC2 instance. An...
EC2 Auto ScalingEBS snapshotsDisaster recoveryRTO/RPO
Question #53Incident & Event Response
A new zero-day vulnerability was found in OpenSSL requiring the immediate patching of a production web fleet running on Amazon Linux. Currently, OS updates are performed manually o...
Systems Manager Run CommandEmergency patchingOS updatesZero downtime
Question #54SDLC Automation
A defect was discovered in production and a new sprint item has been created for deploying a hotfix. However, any code change must go through the following steps before going into...
Source control strategyHotfix deploymentCodePipelineSecurity scanning
Question #55Security & Compliance
A Development team creates a build project in AWS CodeBuild. The build project invokes automated tests of modules that access AWS services. Which of the following will enable the t...
CodeBuild securityIAM rolesleast privilegeservice permissions
Question #56Configuration Management & Infrastructure as Code
An IT team has built an AWS CloudFormation template so others in the company can quickly and reliably deploy and terminate an application. The template creates an Amazon EC2 instan...
CloudFormationS3 bucket lifecyclestack deletioncustom resources
Question #57SDLC Automation
A company has an AWS CodePipeline pipeline that is configured with an Amazon S3 bucket in the eu-west-1 Region. The pipeline deploys an AWS Lambda application to the same Region. T...
CodePipelinecross-region deploymentS3 artifact storeCloudFormation deployment
Question #58Reliability & Resilience
A company runs an application on one Amazon EC2 instance. Application metadata is stored in Amazon S3 and must be retrieved if the instance is restarted. The instance must restart...
EC2 auto-healingAWS OpsWorksapplication metadatainstance restart
Question #59Identity and Access Management - Implement and manage fine-grained access control using ABAC with IAM Identity Center session tags and resource-based policy conditions
A company has multiple AWS accounts. The company uses AWS IAM Identity Center (AWS Single Sign-On) that is integrated with AWS Toolkit for Microsoft Azure DevOps. The attributes fo...
IAM Identity CenterAttribute-Based Access Control (ABAC)IAM Policy ConditionsEC2 Resource Tags
Question #60Security & Compliance
A company hosts a security auditing application in an AWS account. The auditing application uses an IAM role to access other AWS accounts. All the accounts are in the same organiza...
AWS OrganizationsService Control PoliciesIAM role protectionleast privilege
Question #61SDLC Automation
A company has an on-premises application that is written in Go. A DevOps engineer must move the application to AWS. The company's development team wants to enable blue/green deploy...
Elastic Beanstalkblue/green deploymentA/B testingGo application
Question #62Monitoring & Logging
A developer is maintaining a fleet of 50 Amazon EC2 Linux servers. The servers are part of an Amazon EC2 Auto Scaling group, and also use Elastic Load Balancing for load balancing....
Auto Scaling lifecycle hooksCloudWatch Logslog collectionroot cause analysis
Question #63Security & Compliance
A company has an organization in AWS Organizations. The organization includes workload accounts that contain enterprise applications. The company centrally manages users from an op...
AWS Organizationscross-account accessIAM rolesleast privilege
Question #64Security & Compliance
A company has multiple accounts in an organization in AWS Organizations. The company's SecOps team needs to receive an Amazon Simple Notification Service (Amazon SNS) notification...
AWS ConfigAWS OrganizationsS3 Block Public AccessSNS notificationssecurity compliance
Question #65Monitoring & Logging
A company has migrated its container-based applications to Amazon EKS and want to establish automated email notifications. The notifications sent to each email address are for spec...
EKS loggingCloudWatch LogsLambda triggersSNS notifications
Question #66Monitoring & Logging
A company is implementing an Amazon Elastic Container Service (Amazon ECS) cluster to run its workload. The company architecture will run multiple ECS services on the cluster. The...
ECS loggingALB access logsCloudWatch LogsKinesis Data FirehoseS3 log storage
Question #67Configuration Management & Infrastructure as Code
A company that uses electronic health records is running a fleet of Amazon EC2 instances with an Amazon Linux operating system. As part of patient privacy requirements, the company...
Systems Manager Patch Managerpatch managementEC2 patchingcustom repositories
Question #68SDLC Automation
A retail company is currently hosting a Java-based application in its on-premises data center. Management wants the DevOps Engineer to move this application to AWS. Requirements st...
Elastic Beanstalkhigh availabilitylow management overheaddeployment strategies
Question #69Monitoring & Logging
For auditing, analytics, and troubleshooting purposes, a DevOps Engineer for a data analytics application needs to collect all of the application and Linux system logs from the Ama...
Auto Scaling lifecycle hooksCloudWatch Logslog retentioncost optimizationlog analysis
Question #71Security & Compliance
A company uses AWS Key Management Service (AWS KMS) keys and manual key rotation to meet regulatory compliance requirements. The security team wants to be notified when any keys ha...
AWS ConfigKMS key rotationsecurity complianceSNS notifications
Question #72Security & Compliance
A security review has identified that an AWS CodeBuild project is downloading a database population script from an Amazon S3 bucket using an unauthenticated request. The security t...
S3 bucket policiesCodeBuild service roleleast privilegeauthenticated access
Question #73Security & Compliance
An ecommerce company has chosen AWS to host its new platform. The company's DevOps team has started building an AWS Control Tower landing zone. The DevOps team has set the identity...
IAM Identity CenterABACSAML 2.0federated identitypermission sets
Question #74Incident & Event Response
An ecommerce company is receiving reports that its order history page is experiencing delays in reflecting the processing status of orders. The order processing system consists of...
AWS Lambda PerformanceDynamoDB ScalingSQS MonitoringTroubleshooting Delays
Question #75Security and Compliance
A company has a single AWS account that runs hundreds of Amazon EC2 instances in a single AWS Region. New EC2 instances are launched and terminated each hour in the account. The ac...
AWS ConfigEC2 instance profilesCompliance automationSecurity policies
Question #76Reliability & Resilience
A DevOps engineer is building a continuous deployment pipeline for a serverless application that uses AWS Lambda functions. The company wants to reduce the customer impact of an un...
Serverless DeploymentCanary DeploymentsAWS SAMAutomatic Rollbacks
Question #77Security and Compliance
To run an application, a DevOps engineer launches an Amazon EC2 instance with public IP addresses in a public subnet. A user data script obtains the application artifacts and insta...
VPC EndpointsPrivate networkingEC2 deploymentS3 access
Question #78SDLC Automation
A development team is using AWS CodeCommit to version control application code and AWS CodePipeline to orchestrate software deployments. The team has decided to use a remote main b...
AWS CodePipelineAWS CodeCommitEvent-driven architectureTroubleshooting
Question #79SDLC Automation
A company has developed an AWS Lambda function that handles orders received through an API. The company is using AWS CodeDeploy to deploy the Lambda function as the final stage of...
AWS CodeDeployLambda deploymentLifecycle hooksDatabase synchronization
Question #80SDLC Automation
A company is using AWS CodeDeploy to manage its application deployments. Recently, the Development team decided to use GitHub for version control, and the team is looking for ways...
AWS CodePipelineGitHub integrationAWS CodeDeployContinuous deployment
Question #81Monitoring and Logging
A company mandates the creation of capture logs for everything running in its AWS account. The account has multiple VPCs with Amazon EC2 instances, Application Load Balancers, Amaz...
Centralized loggingCloudWatch LogsS3 Object LockEC2 loggingLog protection
Question #82SDLC Automation
A company has containerized all of its in-house quality control applications. The company is running Jenkins on Amazon EC2, which requires patching and upgrading. The Compliance Of...
AWS CodeBuildBuild automationArtifact encryptionServerless CI/CD
Question #83Security and Compliance
A company's developers use Amazon EC2 instances as remote workstations. The company is concerned that users can create or modify EC2 security groups to allow unrestricted inbound a...
Event-driven securityAWS CloudTrailAmazon EventBridgeAWS LambdaSecurity automation
Question #84Resilient Cloud Solutions
A DevOps engineer is creating an AWS CloudFormation template to deploy a web service. The web service will run on Amazon EC2 instances in a private subnet behind an Application Loa...
IPv6 networkingApplication Load BalancerVPC configurationCloudFormation
Question #85Configuration Management and Infrastructure as Code
A company uses AWS Organizations and AWS Control Tower to manage all the company's AWS accounts. The company uses the Enterprise Support plan. A DevOps engineer is using Account Fa...
AWS Control TowerAWS OrganizationsAccount Factory for TerraformEnterprise SupportIaC
Question #86Incident & Event Response
A company's DevOps engineer uses AWS Systems Manager to perform maintenance tasks during maintenance windows. The company has a few Amazon EC2 instances that require a restart afte...
AWS HealthAmazon EventBridgeAutomated remediationEC2 maintenance
Question #87SDLC Automation
A company has containerized all of its in-house quality control applications. The company is running Jenkins on Amazon EC2 instances, which require patching and upgrading. The comp...
AWS CodeBuildBuild automationArtifact encryptionServerless CI/CD
Question #88SDLC Automation
A company is using AWS CodePipeline to automate its release pipeline. AWS CodeDeploy is being used in the pipeline to deploy an application to Amazon Elastic Container Service (Ama...
AWS CodeDeployECS blue/green deploymentLifecycle hooksAutomated testingRollback strategy
Question #89Resilient Cloud Solutions
A company uses AWS Storage Gateway in file gateway mode in front of an Amazon S3 bucket that is used by multiple resources. In the morning when business begins, users do not see th...
AWS Storage GatewayS3 integrationCache invalidationAmazon EventBridge
Question #90Reliability & Resilience
A DevOps engineer needs to back up sensitive Amazon S3 objects that are stored within an S3 bucket with a private bucket policy using S3 cross-Region replication functionality. The...
S3 replicationCross-account accessIAM rolesBucket policiesData backup
Question #91Security and Compliance
A company is using Amazon S3 buckets to store important documents. The company discovers that some S3 buckets are not encrypted. Currently, the company's IAM users can create new S...
S3 encryptionAWS ConfigSecurity policiesCompliance automationServer-side encryption
Question #92SDLC Automation
A DevOps engineer is architecting a continuous development strategy for a company's software as a service (SaaS) web application running on AWS. For application and security reason...
AWS CodePipelineAWS CodeDeployParallel deploymentsContinuous deploymentAuto Scaling Group
Question #93Resilient Cloud Solutions
A company is hosting a static website from an Amazon S3 bucket. The website is available to customers at example.com. The company uses an Amazon Route 53 weighted routing policy wi...
Amazon Route 53Weighted routingDNS managementStatic website hostingTroubleshooting
Question #94Monitoring and Logging
A company is implementing AWS CodePipeline to automate its testing process. The company wants to be notified when the execution state fails and used the following custom event patt...
Amazon EventBridgeAWS CodePipelineEvent patternsNotificationsCI/CD
Question #95Configuration Management and Infrastructure as Code
An application running on a set of Amazon EC2 instances in an Auto Scaling group requires a configuration file to operate. The instances are created and maintained with AWS CloudFo...
CloudFormationcfn-initConfiguration ManagementAuto Scaling
Question #96Monitoring & Logging
A company manages an application that stores logs in Amazon CloudWatch Logs. The company wants to archive the logs to an Amazon S3 bucket. Logs are rarely accessed after 90 days an...
CloudWatch LogsS3 lifecycle policiesKinesis Data Firehoselog archival
Question #97SDLC Automation
A company is developing a new application. The application uses AWS Lambda functions for its compute tier. The company must use a canary deployment for any changes to the Lambda fu...
Lambda canary deploymentsautomated rollbackCI/CD pipelineAWS SAM
Question #98SDLC Automation
A DevOps engineer is deploying a new version of a company's application in an AWS CodeDeploy deployment group associated with its Amazon EC2 instances. After some time, the deploym...
CodeDeploydeployment failuresEC2 IAM rolesnetwork connectivity
Question #99Configuration Management and IaC
A company has a guideline that every Amazon EC2 instance must be launched from an AMI that the company's security team produces. Every month, the security team sends an email messa...
AMI managementEC2 Image BuilderSSM Parameter StoreCloudFormation integration
Question #100SDLC Automation
An application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). A DevOps engineer is using AWS CodeDeploy to release a new version. The deployment fails duri...
CodeDeployALB health checksdeployment failuresAllowTraffic hook
Question #101Resilient Cloud Solutions
A company has 20 service teams. Each service team is responsible for its own microservice. Each service team uses a separate AWS account for its microservice and a VPC with the 192...
AWS PrivateLinkcross-account networkingoverlapping CIDRmicroservices
Question #102Security and Compliance
An Amazon EC2 instance is running in a VPC and needs to download an object from a restricted Amazon S3 bucket. When the DevOps engineer tries to download the object, an AccessDenie...
IAM RolesS3 Bucket PolicyAccess ControlPermissions Management

PreviousPage 2 of 10Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.