Topic 1 Question 169
2 つ選択A company has a new AWS account that teams will use to deploy various applications. The teams will create many Amazon S3 buckets for application-specific purposes and to store AWS CloudTrail logs. The company has enabled Amazon Macie for the account.
A DevOps engineer needs to optimize the Macie costs for the account without compromising the account's functionality.
Which solutions will meet these requirements?
Exclude S3 buckets that contain CloudTrail logs from automated discovery.
Exclude S3 buckets that have public read access from automated discovery.
Configure scheduled daily discovery jobs for all S3 buckets in the account.
Configure discovery jobs to include S3 objects based on the last modified criterion.
Configure discovery jobs to include S3 objects that are tagged as production only.
ユーザの投票
コメント(8)
- 正解だと思う選択肢: AD
Don’t scan CloudTrail logs, Include objects by using the “last modified” criterion :https://aws.amazon.com/blogs/security/how-to-use-amazon-macie-to-reduce-the-cost-of-discovering-sensitive-data/
👍 2ozansenturk2024/01/01 - 正解だと思う選択肢: BE
B and E is correct
👍 1PrasannaBalaji2023/12/29 - 正解だと思う選択肢: AD
A and D is correct
👍 1komorebi2023/12/30
シャッフルモード