Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Cloud Practitioner > Security and Compliance > Flashcards

Security and Compliance Flashcards

1
Q

Amazon’s automated security assessment service is called?

A

Amazon Inspector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Amazon Inspector?

A

An automated security assessment service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Amazon GuardDuty?

A

A continuous security monitoring service that analyzes and processes a variety data sources and machine learning to identify unexpected and potentially unauthorized or malicious activity within your AWS environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Amazon’s continuous security monitoring service that analyzes and processes a variety data sources and machine learning to identify unexpected and potentially unauthorized or malicious activity within your AWS environment is called?

A

Amazon GuardDuty

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What does Amazon CloudTrail do?

A

Logs activity across your AWS infrastructure (who did what when)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Amazon’s service that enables governance, compliance, operational auditing, and risk auditing by logging activity across your AWS infrastructure is called

A

Amazon CloudTrail

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which AWS tool captures information about IP traffic going to and from network interfaces in your Virtual Private Cloud (VPC)?

A

VPC Flow Logs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which AWS tool is a managed service for mitigating distributed denial of service (DDoS) attacks?

A

AWS Shield

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

An internet gateway traffic into and out of? How is that different than a virtual private gateway?

A

The internet gateway controls traffic from the internet into and out of the Virtual Private Cloud (VPC). The Virtual Private Gateway controls traffic in and out of a Security Group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are Service Control Policies (SCPs)?

A

Service Control Policies are a feature of AWS Organizations and restrict available permissions. They do not grant permissions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the difference between managed IAM policies and custom IAM policies?

A

Custom polices are editable. Managed policies are not.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is AWS WAF?

A

Configurable web application firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Amazon’s configurable web application firewall is called?

A

AWS WAF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What does AWS Shield cost?

A

AWS Shield is automatically included at no extra cost. For added protection against DDoS attacks, AWS offers AWS Shield Advanced for an additional charge.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS Cloud Practitioner (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions