Topic 1 Question 192
A company stores customer data in an Amazon S3 bucket. Multiple teams in the company want to use the customer data for downstream analysis. The company needs to ensure that the teams do not have access to personally identifiable information (PII) about the customers.
Which solution will meet this requirement with LEAST operational overhead?
Use Amazon Macie to create and run a sensitive data discovery job to detect and remove PII.
Use S3 Object Lambda to access the data, and use Amazon Comprehend to detect and remove PII.
Use Amazon Data Firehose and Amazon Comprehend to detect and remove PII.
Use an AWS Glue DataBrew job to store the PII data in a second S3 bucket. Perform analysis on the data that remains in the original S3 bucket.
ユーザの投票
コメント(6)
Correct Answer: A
Amazon Macie is designed specifically for discovering and protecting sensitive data within AWS environments. It automates the process of identifying PII in your S3 buckets, allowing you to create jobs that can regularly scan for and manage sensitive information. This approach minimizes manual effort and integrates well into existing workflows, providing ongoing protection without requiring additional infrastructure or complex setups.
👍 3kupo7772024/11/04- 正解だと思う選択肢: B
it is not A, Macie can only detect the PII
👍 3HagarTheHorrible2024/12/23 - 正解だと思う選択肢: B
Macie will only detect sensitive data, it can't redact it. So, we can use option B
With S3 Object Lambda and a prebuilt AWS Lambda function powered by Amazon Comprehend, you can protect PII data retrieved from S3 before returning it to an application.
👍 2paali2024/12/17
シャッフルモード