Topic 1 Question 131
3 つ選択A financial services company wants to adopt Amazon SageMaker as its default data science environment. The company's data scientists run machine learning (ML) models on confidential financial data. The company is worried about data egress and wants an ML engineer to secure the environment. Which mechanisms can the ML engineer use to control data egress from SageMaker?
Connect to SageMaker by using a VPC interface endpoint powered by AWS PrivateLink.
Use SCPs to restrict access to SageMaker.
Disable root access on the SageMaker notebook instances.
Enable network isolation for training jobs and models.
Restrict notebook presigned URLs to specific IPs used by the company.
Protect data with encryption at rest and in transit. Use AWS Key Management Service (AWS KMS) to manage encryption keys.
ユーザの投票
コメント(17)
ADF - the concepts in ADF are explained in detail on the official Amazon Exam Readiness Exam Readiness: AWS Certified Machine Learning - Specialty. Amazon official materials do not mention other concepts in BCE.
👍 32SophieSu2021/10/09As per official document only 4 ways to do data egress Enforcing deployment in VPC,Enforcing network isolation,Restricting notebook pre-signed URLs to IPs,Disabling internet access Correct Ans - ADE
Read Controlling data egress section Link - https://aws.amazon.com/blogs/machine-learning/millennium-management-secure-machine-learning-using-amazon-sagemaker/
👍 21rahulw2302021/10/31I think it is ADE
👍 7astonm132021/10/07
シャッフルモード