Multiple Choice
An organization processes consumer information submitted through its website. The organization's security policy requires that personally identifiable information (PII) elements are specifically encrypted at all times and as soon as feasible when received. The front-end Amazon EC2 instances should not have access to decrypted PII. A single service within the production VPC must decrypt the PII by leveraging an IAM role. Which combination of services will support these requirement? (Choose two.)
A) Amazon Aurora in a private subnet
B) Amazon CloudFront using AWS Lambda@Edge
C) Customer-managed MySQL with Transparent Data Encryption
D) Application Load Balancer using HTTPS listeners and targets
E) AWS Key Management Services
Correct Answer:
Verified
Correct Answer:
Verified
Q219: Considering your knowledge of both the OSI
Q220: A company's application runs in a VPC
Q221: You need to find the MTU used
Q222: You have been asked to monitor traffic
Q223: You need to set up an Amazon
Q225: Which is not a valid Route 53
Q226: Your company just deployed a WAF to
Q227: Which of these metrics cannot help detect
Q228: An organization is replacing a tape backup
Q229: Your company needs to leverage Amazon Simple