Amazon (CLF-C01) Exam Questions And Answers page 12
A company is undergoing a security audit. The audit includes security validation and compliance validation of the AWS infrastructure and services that the company uses. The auditor needs to locate compliance-related information and must download AWS security and compliance documents. These documents include the System and Organization Control (SOC) reports.
Which AWS service or group can provide these documents?
Which AWS service or group can provide these documents?
AWS Artifact
AWS Support
AWS Config
AWS Global Infrastructure
Security and Compliance
A company is using Amazon EC2 Auto Scaling to scale its Amazon EC2 instances.
Which benefit of the AWS Cloud does this example illustrate?
Which benefit of the AWS Cloud does this example illustrate?
High availability
Elasticity
Reliability
Global reach
Cloud Concepts
AWS Services
A company must ensure that its endpoint for a database instance remains the same after a single Availability Zone service interruption. The application needs to resume database operations without the need for manual administrative intervention.
How can these requirements be met?
How can these requirements be met?
Use multiple Amazon Route 53 routes to the standby database instance endpoint hosted on AWS Storage Gateway.
Configure Amazon RDS Multi-Availability Zone deployments with automatic failover to the standby.
Add multiple Application Load Balancers and deploy the database instance with AWS Elastic Beanstalk.
Deploy a single Network Load Balancer to distribute incoming traffic across multiple Amazon CloudFront origins.
AWS Services
Security and Compliance
A company must keep records of all resource changes that are made through the AWS Management Console and AWS APIs.
Which AWS service should the company use to meet this requirement?
Which AWS service should the company use to meet this requirement?
Amazon CloudWatch
AWS CloudTrail
AWS X-Ray
Amazon Inspector
AWS Services
Security and Compliance
A company must process a large amount of data from social media accounts by making graphical queries with high throughput.
Which AWS service will help the company design a cloud architecture that will meet these requirements?
Which AWS service will help the company design a cloud architecture that will meet these requirements?
Amazon RDS
Amazon DynamoDB
Amazon Neptune
Amazon Redshift
AWS Services
Architecting on AWS
A company must store critical business data in Amazon S3 with a backup to another AWS Region.
How can this be achieved?
How can this be achieved?
Use an Amazon CloudFront Content Delivery Network (CDN) to cache data globally
Set up Amazon S3 cross-region replication to another AWS Region
Configure the AWS Backup service to back up to the data to another AWS Region
Take Amazon S3 bucket snapshots and copy that data to another AWS Region
Cloud Concepts
AWS Services
A company needs 24/7 phone, email, and chat access, with a response time of less than 1 hour if a production system has a service interruption.
Which AWS Support plan meets these requirements at the LOWEST cost?
Which AWS Support plan meets these requirements at the LOWEST cost?
Basic
Developer
Business
Enterprise
AWS Services
Security and Compliance
A company needs a content delivery network that provides secure delivery of data, videos, applications, and APIs to users globally with low latency and high transfer speed.
Which AWS service meets these requirements?
Which AWS service meets these requirements?
Amazon CloudFront
Elastic Load Balancing
Amazon S3
Amazon Elastic Transcoder
AWS Global Infrastructure
AWS Services
A company needs a firewall that will control network connections to and from a single Amazon EC2 instance. This firewall will not control network connections to and from other instances that are in the same subnet.
Which AWS service or feature can the company use to meet these requirements?
Which AWS service or feature can the company use to meet these requirements?
Network ACL
AWS WAF
Route table
Security group
AWS Services
Security and Compliance
A company needs an Amazon S3 bucket that cannot have any public objects due to compliance requirements.
How can this be accomplished?
How can this be accomplished?
Enable S3 Block Public Access from the AWS Management Console.
Hold a team meeting to discuss the importance if only uploading private S3 objects.
Require all S3 objects to be manually approved before uploading.
Create a service to monitor all S3 uploads and remove any public uploads.
AWS Services
Security and Compliance
Comments