DVA-C02 · Question #463
DVA-C02 Question #463: Real Exam Question with Answer & Explanation
The correct answer is B: Enable Amazon Macie for the S3 bucket. Set up custom criteria to find unencrypted private data. Amazon Macie is a fully managed data security service that uses machine learning and pattern matching to discover, classify, and protect sensitive data stored in Amazon S3. It can automatically detect and alert you to unencrypted sensitive data, and it monitors the security and a
Question
A developer is creating a web application to upload and store private data. The application will encrypt private data and then will upload the data to an Amazon S3 bucket. The developer needs to implement a solution to automatically find any unencrypted private data in the S3 bucket. The solution must monitor the security and access control of the S3 bucket and must provide a notification if there are any security issues. Which solution will meet these requirements?
Options
- AUse AWS Step Functions to run Amazon Athena queries. Configure Athena to find unencrypted
- BEnable Amazon Macie for the S3 bucket. Set up custom criteria to find unencrypted private data
- CEnable Amazon Inspector for the AWS account. Use Amazon Inspector to scan the S3 bucket to
- DCreate an Amazon Kinesis data stream. Configure Amazon S3 to send new object notifications to
Explanation
Amazon Macie is a fully managed data security service that uses machine learning and pattern matching to discover, classify, and protect sensitive data stored in Amazon S3. It can automatically detect and alert you to unencrypted sensitive data, and it monitors the security and access control of the S3 bucket. Macie provides notifications when it detects security issues or unencrypted private data, which fits the requirements perfectly.
Community Discussion
No community discussion yet for this question.