AWS Security scsinfraiam — practice questions
12 free MCQs with worked solutions. Tap any question for the answer + explanation, or practice them all in the app.
Practice AWS Security scsinfraiam in the app →Which AWS service provides L7 (HTTP/S) protection against OWASP-top-10 web attacks with managed rule groups, cWhich AWS service provides L3/L4 DDoS protection — included free at standard tier across AWS edge services, wiWhich AWS feature lets a security engineer block traffic from specific countries at the CloudFront edge — usedWhich AWS networking primitive is STATEFUL, lives at the ENI level, allows traffic by allow-rules-only (implicWhich AWS networking primitive is STATELESS, attached at the subnet level, supports both allow + explicit denyWhich AWS service provides centralised firewall management — deploying WAF rules, Shield Advanced protections,Which AWS service is the managed stateful firewall for VPC traffic — supporting Suricata-compatible rules, intWhich AWS feature lets a security engineer trace whether traffic from a source ENI to a destination ENI is perWhich AWS service is the canonical identity store for managing IAM users, roles, groups, and policies — providWhich AWS service federates corporate identities (Active Directory, Okta, Azure AD) into AWS for human users aWhich AWS service is the customer-identity-and-access-management (CIAM) service for consumer apps — supportingWhich IAM feature lets an architect cap the MAXIMUM permissions an entity (user/role) can have — used to safel