AWS Security scsdatagov — practice questions
12 free MCQs with worked solutions. Tap any question for the answer + explanation, or practice them all in the app.
Practice AWS Security scsdatagov in the app →Which AWS service creates and rotates customer-managed encryption keys with IAM-controlled access — used to enWhich AWS service provides dedicated FIPS 140-2 Level 3 HSMs for tenants with strict regulatory requirements (Which AWS service issues + rotates public TLS certificates for AWS-managed endpoints (load balancers, CloudFroWhich AWS service centrally stores application secrets (DB passwords, API keys, OAuth tokens) with automatic rWhich AWS service lightweight-stores parameters + SecureString secrets, integrated with KMS encryption — a cheWhich Amazon S3 feature enforces WORM (write-once-read-many) data retention to protect logs/backups from deletWhich AWS feature lets a security engineer enforce 'no S3 bucket can be made public' across the entire AWS OrgWhich AWS service automatically discovers and classifies sensitive data (PII, financial data, credentials) in Which AWS service centrally manages multiple AWS accounts with consolidated billing, SCPs, and account-vendingWhich AWS Organization feature lets a security engineer enforce 'deny all use of root user except for break-glWhich AWS service provides a turnkey multi-account landing-zone with guardrails, account factory, and pre-bakeWhich AWS service helps a security engineer collect evidence for compliance audits — assessing AWS resource co