Security Compliance Flashcards

1
Q

Which AWS service allows you to manage and rotate secrets such as database credentials?
A) AWS Secrets Manager
B) AWS CloudTrail
C) AWS Config
D) AWS CodeDeploy

A

A) AWS Secrets Manager

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How can you ensure that your AWS resources comply with security best practices and continuously monitor for compliance violations?
A) AWS Config
B) AWS IAM
C) AWS Lambda
D) AWS CloudTrail

A

A) AWS Config

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which service provides automatic encryption of data at rest and in transit for S3 objects?
A) Amazon S3 Server-Side Encryption
B) AWS Shield
C) AWS CloudFormation
D) AWS Trusted Advisor

A

A) Amazon S3 Server-Side Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How can you provide temporary, limited-privilege credentials to applications that need access to AWS resources?
A) AWS Security Token Service (STS)
B) AWS Key Management Service (KMS)
C) AWS CloudFormation
D) AWS CodePipeline

A

A) AWS Security Token Service (STS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which AWS service helps you protect against DDoS attacks?
A) AWS Shield
B) AWS CloudTrail
C) AWS Config
D) Amazon Macie

A

A) AWS Shield

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which AWS service helps you monitor and enforce compliance with security standards and best practices across your AWS resources?
A) AWS Config
B) AWS Lambda
C) AWS CloudTrail
D) AWS IAM

A

A) AWS Config

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

To protect your web application from DDoS attacks, which AWS service should you use?
A) AWS Shield
B) AWS CloudFormation
C) AWS CodeDeploy
D) Amazon Macie

A

A) AWS Shield

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which service would you use to manage access control and permissions to AWS resources?
A) AWS Identity and Access Management (IAM)
B) AWS Lambda
C) AWS CloudFormation
D) Amazon EC2

A

A) AWS Identity and Access Management (IAM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

You need to encrypt sensitive data in your AWS environment. Which AWS service would you use to manage encryption keys?
A) AWS Key Management Service (KMS)
B) AWS Secrets Manager
C) AWS CloudTrail
D) AWS Config

A

A) AWS Key Management Service (KMS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which AWS service allows you to scan S3 buckets to discover sensitive data such as personally identifiable information (PII)?
A) Amazon Macie
B) AWS Shield
C) AWS Lambda
D) AWS Trusted Advisor

A

A) Amazon Macie

How well did you know this?
1
Not at all
2
3
4
5
Perfectly