Amazon SCS-C02 Exam Real Questions

Prepare and pass your AWS Certified Security Specialty with free SCS-C02 exam questions.

Page:    1 / 97      
Total 481 Questions | Updated On: Sep 26, 2024
Add To Cart
Question 1

A security team has mandated that only approved Amazon Machine Images (AMIs) can be used for launching Amazon EC2 instances. The security team requires a method of automatically validating compliance with the new mandate.
Which solution can the security team use to find unapproved AMIs for new and existing Amazon EC2 instances?


Answer: C
Question 2

A corporation is preparing to acquire several companies. A Security Engineer must design a solution to ensure that newly acquired IAM accounts follow the corporation's security best practices. The solution should monitor each Amazon S3 bucket for unrestricted public write access and use IAM managed services. What should the Security Engineer do to meet these requirements?


Answer: C
Question 3

Due to compliance requirements, a company must rotate encryption keys every year. An AWS KMS key was created using imported key material. A security engineer needs a process to rotate the KMS key.
Which key rotation process is MOST efficient?


Answer: C
Question 4

A company needs to retain tog data archives for several years to be compliant with regulations. The tog data is no longer used but It must be retained What Is the MOST secure and cost-effective solution to meet these requirements?


Answer: B
Question 5

A security vulnerability has been discovered that could lead to sensitive data being leaked on TCP port 5601. The development team is working on updating the code, but it could take several days. A security engineer must identify any hosts attempting to send data over port 5601 and prevent the traffic leaving the network.
How can the security engineer accomplish this goal?


Answer: A
Page:    1 / 97      
Total 481 Questions | Updated On: Sep 26, 2024
Add To Cart

© Copyrights DumpsCertify 2024. All Rights Reserved

We use cookies to ensure your best experience. So we hope you are happy to receive all cookies on the DumpsCertify.