Browse Exams Pricing

ExamsDOP-C02Questions

DOP-C02 Exam Questions

498 real DOP-C02 exam questions with expert-verified answers and explanations. Page 5 of 10.

Question #203Security and Compliance
A company runs an application for multiple environments in a single AWS account. An AWS CodePipeline pipeline uses a development Amazon Elastic Container Service (Amazon ECS) clust...
ECR cross-account accessVPC endpointsrepository policyprivate networkingcontainer images
Question #204Security and Compliance
A company needs to ensure that flow logs remain configured for all existing and new VPCs in its AWS account. The company uses an AWS CloudFormation stack to manage its VPCs. The co...
VPC Flow LogsAWS Configcompliance monitoringnetwork security
Question #205Security & Compliance
A company's application teams use AWS CodeCommit repositories for their applications. The application teams have repositories in multiple AWS accounts. All accounts are in an organ...
ABACAWS Organizations SCPCodeCommit Approval RulesIAM Identity Center
Question #206Monitoring and Logging
A company uses AWS WAF to protect its cloud infrastructure. A DevOps engineer needs to give an operations team the ability to analyze log messages from AWS WAF. The operations team...
AWS WAFCloudWatch Logslog analysisalarmsoperational overhead
Question #207SDLC Automation
A software team is using AWS CodePipeline to automate its Java application release pipeline. The pipeline consists of a source stage, then a build stage, and then a deploy stage. E...
AWS CodePipelineAWS CodeBuildCI/CDUnit Testing
Question #208Security and Compliance
A company uses an organization in AWS Organizations to manage several AWS accounts that the company's developers use. The company requires all data to be encrypted in transit. Mult...
AWS OrganizationsAWS Config Conformance PackS3 encryption in transitcompliance enforcement
Question #209Security and Compliance
A company is reviewing its IAM policies. One policy written by the DevOps engineer has been flagged as too permissive. The policy is used by an AWS Lambda function that issues a st...
IAM PoliciesLeast PrivilegeAWS SecurityPolicy Conditions
Question #210Monitoring and Logging
A company is developing an application that will generate log events. The log events consist of five distinct metrics every one tenth of a second and produce a large amount of data...
Amazon TimestreamData IngestionTime Series DataQuery Optimization
Question #211Configuration Management and Infrastructure as Code
A DevOps engineer has created an AWS CloudFormation template that deploys an application on Amazon EC2 instances. The EC2 instances run Amazon Linux. The application is deployed to...
CloudFormation updatesEC2 User Datacfn-initSSM Documentsinstance configuration
Question #212Security and Compliance
A company is refactoring applications to use AWS. The company identifies an internal web application that needs to make Amazon S3 API calls in a specific AWS account. The company w...
OIDC federationIAM IdPAssumeRoleWithWebIdentityS3 API accesstemporary credentials
Question #213Security and Compliance
A company uses Amazon RDS for all databases in its AWS accounts. The company uses AWS Control Tower to build a landing zone that has an audit and logging account. All databases mus...
AWS Control TowerguardrailsRDS encryption at restcompliance monitoringorganizational governance
Question #214SDLC Automation
A company is migrating from its on-premises data center to AWS. The company currently uses a custom on-premises Cl/CD pipeline solution to build and package software. The company w...
CodeArtifactCI/CD IntegrationAWS Roles AnywherePackage Management
Question #215SDLC Automation
A DevOps team uses AWS CodePipeline, AWS CodeBuild, and AWS CodeDeploy to deploy an application. The application is a REST API that uses AWS Lambda functions and Amazon API Gateway...
AWS CodeDeployCanary DeploymentAutomatic RollbackLambda Deployment
Question #216Reliability & Resilience
A company recently deployed its web application on AWS. The company is preparing for a large- scale sales event and must ensure that the web application can scale to meet the deman...
Lambda scalingProvisioned concurrencyRDS ProxyDatabase connection pooling
Question #217Reliability & Resilience
A company runs a web application that extends across multiple Availability Zones. The company uses an Application Load Balancer (ALB) for routing, AWS Fargate for the application,...
Disaster RecoveryCross-Region ReplicationRTO/RPOCost Optimization
Question #218Monitoring & Logging
A company's application runs on Amazon EC2 instances. The application writes to a log file that records the username, date, time, and source IP address of the login. The log is pub...
CloudWatch LogsLog AnalysisCloudWatch Logs InsightsLog Querying
Question #219SDLC Automation
A company has an AWS CodeDeploy application. The application has a deployment group that uses a single tag group to identify instances for the deployment of Application. The single...
AWS CodeDeployDeployment GroupsEC2 TaggingApplication Deployment
Question #220Security & Compliance
A company is launching an application that stores raw data in an Amazon S3 bucket. Three applications need to access the data to generate reports. The data must be redacted differe...
S3 Object LambdaData RedactionS3 Access PointsDynamic Data Transformation
Question #221Security and Compliance
A company uses AWS Control Tower and AWS CloudFormation to manage its AWS accounts and to create AWS resources. The company requires all Amazon S3 buckets to be encrypted with AWS...
AWS Control TowerCloudFormation hooksS3 encryptionPreventative controls
Question #222Configuration Management and Infrastructure as Code
A DevOps engineer has developed an AWS Lambda function. The Lambda function starts an AWS CloudFormation drift detection operation on all supported resources for a specific CloudFo...
CloudFormation drift detectionAWS Config rulesEvent-driven notificationsConfiguration monitoring
Question #223Monitoring and Logging
A company has deployed a complex container-based workload on AWS. The workload uses Amazon Managed Service for Prometheus for monitoring. The workload runs in an Amazon Elastic Kub...
Managed PrometheusEKS monitoringAlertmanagerSNS integration
Question #224Security and Compliance
A company's organization in AWS Organizations has a single OU. The company runs Amazon EC2 instances in the OU accounts. The company needs to limit the use of each EC2 instance's c...
AWS Organizations SCPsIAM instance profilesEC2 securityIAM policy conditions
Question #225Monitoring and Logging
A company has a fleet of Amazon EC2 instances that run Linux in a single AWS account. The company is using an AWS Systems Manager Automation task across the EC2 instances. During t...
EC2 patchingDisk space monitoringCloudWatch agentCloudWatch alarms
Question #226Reliability & Resilience
A DevOps engineer is building an application that uses an AWS Lambda function to query an Amazon Aurora MySQL DB cluster. The Lambda function performs only read queries. Amazon Eve...
Lambda database connectionsRDS ProxyConnection poolingPerformance optimization
Question #227SDLC Automation
A company has an AWS CloudFormation stack that is deployed in a single AWS account. The company has configured the stack to send event notifications to an Amazon Simple Notificatio...
CloudFormation eventsEventBridge rulesLambda automationPost-deployment actions
Question #228Reliability & Resilience
A company deploys an application to two AWS Regions. The application creates and stores objects in an Amazon S3 bucket that is in the same Region as the application. Both deploymen...
S3 replicationCross-Region replicationS3 Batch OperationsReplication error handling
Question #229Resilient Cloud Solutions
A company needs to implement failover for its application. The application includes an Amazon CloudFront distribution and a public Application Load Balancer (ALB) in an AWS Region....
CloudFront origin groupsGlobal failoverZero RTOMulti-Region architecture
Question #230Security and Compliance
A cloud team uses AWS Organizations and AWS IAM Identity Center (AWS Single Sign-On) to manage a company's AWS accounts. The company recently established a research team. The resea...
AWS Organizations SCPsIAM Identity CenterAdministratorAccessPreventative security controls
Question #231Reliability & Resilience
A company releases a new application in a new AWS account. The application includes an AWS Lambda function that processes messages from an Amazon Simple Queue Service (Amazon SQS)...
Lambda SQS integrationSQS message processingLambda batchingMessage failure handling
Question #232Monitoring and Logging
A company has an application that runs on AWS Lambda and sends logs to Amazon CloudWatch Logs. An Amazon Kinesis data stream is subscribed to the log groups in CloudWatch Logs. A s...
Kinesis data streamsLambda log processingEnhanced fan-outKinesis shards
Question #233Security and Compliance
A company operates sensitive workloads across the AWS accounts that are in the company's organization in AWS Organizations. The company uses an IP address range to delegate IP addr...
AWS Organizations SCPsIP-based access controlSecurity perimeteraws:SourceIp
Question #234Reliability & Resilience
A company deploys an application in two AWS Regions. The application currently uses an Amazon S3 bucket in the primary Region to store data. A DevOps engineer needs to ensure that...
S3 Cross-Region ReplicationS3 Batch OperationsHigh AvailabilityData Replication Strategy
Question #235Security & Compliance
A company uses an organization in AWS Organizations to manage multiple AWS accounts. The company needs an automated process across all AWS accounts to isolate any compromised Amazo...
AWS OrganizationsCloudFormation StackSetsEC2 instance isolationIAM roles
Question #236Security & Compliance
A company manages multiple AWS accounts by using AWS Organizations with OUs for the different business divisions. The company is updating their corporate network to use new IP addr...
S3 bucket policiesAWS OrganizationsIP access restrictionsResource-based policies
Question #237Security & Compliance
A company has started using AWS across several teams. Each team has multiple accounts and unique security profiles. The company manages the accounts in an organization in AWS Organ...
AWS OrganizationsMulti-account strategyAWS Control TowerPreventive controls
Question #238SDLC Automation
A company uses an AWS CodeCommit repository to store its source code and corresponding unit tests. The company has configured an AWS CodePipeline pipeline that includes an AWS Code...
AWS CodeBuildAWS CodeCommitCI/CDGit Tagging
Question #239Monitoring and Logging
A DevOps engineer manages a company's Amazon Elastic Container Service (Amazon ECS) cluster. The cluster runs on several Amazon EC2 instances that are in an Auto Scaling group. The...
ECS MonitoringEventBridgeLog ManagementTask State Changes
Question #240Security & Compliance
A company wants to deploy a workload on several hundred Amazon EC2 instances. The company will provision the EC2 instances in an Auto Scaling group by using a launch template. The...
IAM RolesEC2 SecurityLeast PrivilegeLaunch Templates
Question #241SDLC Automation
A company is using AWS CodeDeploy to automate software deployment. The deployment must meet these requirements: - A number of instances must be available to serve traffic during th...
AWS CodeDeployBlue/green deploymentApplication Load BalancerAuto Scaling
Question #242Security & Compliance
A company needs to adopt a multi-account strategy to deploy its applications and the associated CI/CD infrastructure. The company has created an organization in AWS Organizations t...
AWS Control TowerMulti-account strategyAccount Factory CustomizationGuardrails
Question #243Security & Compliance
A DevOps team has created a Custom Lambda rule in AWS Config. The rule monitors Amazon Elastic Container Repository (Amazon ECR) policy statements for ecr:* actions. When a noncomp...
AWS Config Custom RulesAWS Lambda PermissionsIAM Execution RoleCompliance Automation
Question #244Security and Compliance
A developer is creating a proof of concept for a new software as a service (SaaS) application. The application is in a shared development AWS account that is part of an organizatio...
IAM RolesService-linked rolesLeast privilegeAWS Organizations
Question #245Monitoring & Logging
A company uses AWS Organizations to manage its AWS accounts. The company wants its monitoring system to receive an alert when a root user logs in. The company also needs a dashboar...
CloudTrailCloudWatch MonitoringMulti-account LoggingSecurity Alerts
Question #246Security and Compliance
A company uses AWS Organizations to manage its AWS accounts. A DevOps engineer must ensure that all users who access the AWS Management Console are authenticated through the compan...
Identity FederationAWS OrganizationsService Control Policies (SCPs)IAM Identity Center
Question #247SDLC Automation
A company has deployed a new platform that runs on Amazon Elastic Kubernetes Service (Amazon EKS). The new platform hosts web applications that users frequently update. The applica...
EKSDocker imagesAWS CodeBuildAmazon ECR
Question #248Security & Compliance
A company groups its AWS accounts in OUs in an organization in AWS Organizations. The company has deployed a set of Amazon API Gateway APIs in one of the Organizations accounts. Th...
API GatewayAPI authorizationIAM authenticationLambda authorizer
Question #249Monitoring and Logging
A company wants to decrease the time it takes to develop new features. The company uses AWS CodeBuild and AWS CodeDeploy to build and deploy its applications. The company uses AWS...
DORA MetricsCI/CD MonitoringEvent-driven ArchitectureCloudWatch Custom Metrics
Question #250Configuration Management and Infrastructure as Code
A company has developed a static website hosted on an Amazon S3 bucket. The website is deployed using AWS CloudFormation. The CloudFormation template defines an S3 bucket and a cus...
CloudFormationCustom ResourcesS3Stack Deletion
Question #251Security & Compliance
A company uses Amazon EC2 as its primary compute platform. A DevOps team wants to audit the company's EC2 instances to check whether any prohibited applications have been installed...
AWS Systems ManagerInventory ManagementEC2 AuditCompliance
Question #252Reliability & Resilience
A company has an event-driven JavaScript application. The application uses decoupled AWS managed services that publish, consume, and route events. During application testing, event...
Amazon EventBridgeSQS FIFOCloudWatch LogsAWS X-Ray

PreviousPage 5 of 10Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.