A company's security engineer has been tasked with restricting a contractor's IAM account access to the
company's Amazon EC2 console without providing access to any other IAM services The contractors IAM
account must not be able to gain access to any other IAM service, even it the IAM account rs assigned
additional permissions based on IAM group membership
What should the security engineer do to meet these requirements''
You have an S3 bucket defined in IAM. You want to ensure that you encrypt the data before sending it across
the wire. What is the best way to achieve this.
Please select:
A company has two AWS accounts: Account A and Account B Each account has a VPC. An application that
runs in the VPC in Account A needs to write to an Amazon S3 bucket in Account B. The application in
Account A already has permission to write to the S3 bucket in Account B.
The application and the S3 bucket are in the same AWS Region. The company cannot send network traffic
over the public internet.
Which solution will meet these requirements?
A company deployed an Amazon EC2 instance to a VPC on AWS. A recent alert indicates that the EC2
instance is receiving a suspicious number of requests over an open TCP port from an external source. The TCP
port remains open for long periods of time.
The company's security team needs to stop all activity to this port from the external source to ensure that the
EC2 instance is not being compromised. The application must remain available to other users. Which solution will mefet these requirements?
Quickly grab our SCS-C02 product now and kickstart your exam preparation today!
Name: | AWS Certified Security Specialty |
Exam Code: | SCS-C02 |
Certification: | AWS Certified Specialty |
Vendor: | Amazon |
Total Questions: | 481 |
Last Updated: | Apr 22, 2024 |
© Copyright https://certsexpert.com 2015- 2024, All Rights Are Reserved.