Topic 1 Question 405
A company wants to store sensitive financial data within Amazon S3 buckets. The company has a corporate policy that does not allow public read or write access to the buckets. A SysOps administrator must create a solution to automatically remove S3 permissions that allow public read or write access.
Which AWS service should the SysOps administrator use to meet these requirements in the MOST operationally efficient manner?
AWS Config
AWS Security Hub
AWS Trusted Advisor
Amazon Inspector
ユーザの投票
コメント(1)
- 正解だと思う選択肢: A
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. It can be used to monitor and detect changes to S3 bucket policies that may introduce public read or write access.
👍 2LemonGremlin2023/12/31
シャッフルモード