Amazon Exam DAS-C01 Topic 1 Question 70 Discussion

Actual exam question for Amazon's DAS-C01 exam

Question #: 70
Topic #: 1

A company stores its sales and marketing data that includes personally identifiable information (PII) in Amazon S3. The company allows its analysts to launch their own Amazon EMR cluster and run analytics reports with the dat

a. To meet compliance requirements, the company must ensure the data is not publicly accessible throughout this process. A data engineer has secured Amazon S3 but must ensure the individual EMR clusters created by the analysts are not exposed to the public internet.

Which solution should the data engineer to meet this compliance requirement with LEAST amount of effort?

ACreate an EMR security configuration and ensure the security configuration is associated with the EMR clusters when they are created.

BCheck the security group of the EMR clusters regularly to ensure it does not allow inbound traffic from IPv4 0.0.0.0/0 or IPv6 ::/0.

CEnable the block public access setting for Amazon EMR at the account level before any EMR cluster is created.

DUse AWS WAF to block public internet access to the EMR clusters across the board.

Show Suggested Answer

Suggested Answer: B

by Elza at Feb 02, 2023, 12:36 PM

Limited Time Offer

25%

Off

Get Premium DAS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!