Amazon CLF-C01 Online Practice Questions and Exam Preparation

Amazon CLF-C01 Online Questions & Answers

• Question 471:

  A company is building an application on AWS The application needs to comply with credit card regulatory requirements. The company needs proof that the AWS services and deployment are in compliance. Which actions should the company take to meet these requirements? (Choose two.)

  A. Use Amazon Inspector to submit the application for certification
  B. Ensure that the application's underlying hardware components comply with requirements
  C. Use AWS Artifact to access AWS documents about the compliance of the services
  D. Get the compliance of the application Certified by a company assessor
  E. Use AWS Security Hub to certify the compliance of the application
  C. Use AWS Artifact to access AWS documents about the compliance of the services
  D. Get the compliance of the application Certified by a company assessor

  ---

  Explanation/Reference:

  The correct options are C and D.

  C. Use AWS Artifact to access AWS documents about the compliance of the services: AWS Artifact provides on-demand access to AWS' security and compliance reports and other related documentation that the company can use to prove compliance of the AWS services.

  D. Get the compliance of the application certified by a company assessor: To prove that the application is compliant, the company needs to get the application assessed by a qualified third-party assessor. The assessor will provide the company with an attestation of compliance, which the company can use to prove compliance to regulators and other interested parties.

• Question 472:

  A company wants help from AWS Certified freelance consultants to complete several AWS Cloud projects. Which AWS service should the company use to find this support?

  A. AWS IQ
  B. AWS Support
  C. AWS Trusted Advisor
  D. AWS Marketplace
  A. AWS IQ

  ---

  Explanation/Reference:

  The company should use AWS IQ to find AWS Certified freelance consultants to complete their AWS Cloud projects. AWS IQ is a service that helps customers find, engage, and pay AWS experts for on- demand work. Customers can submit requests for help with specific AWS projects, and AWS IQ will match them with AWS Certified freelance experts who can provide the required skills and expertise.

• Question 473:

  Which AWS service aggregates, organizes, and prioritizes security alerts and findings from multiple AWS services?

  A. Amazon Detective
  B. Amazon Inspector
  C. Amazon Macie
  D. AWS Security Hub
  D. AWS Security Hub

  ---

  Explanation/Reference:

  Reference: https://aws.amazon.com/security-hub/?aws-security-hub-blogs.sort-by=item.additionalFields.createdDateandaws-security-hub-blogs.sort-order=desc

• Question 474:

  Which actions allow a company's security team to improve the security procedures for employees accessing AWS resources? (Select TWO )

  A. Create IAM users for groups of employees to share
  B. Create IAM policies based on least privilege principles
  C. Create IAM users in different Availability Zones
  D. Enable multi-factor authentication for privileged users
  E. Specify an individual IAM user for each Amazon EC2 instance
  B. Create IAM policies based on least privilege principles
  D. Enable multi-factor authentication for privileged users

• Question 475:

  Which of the following are valid ways for a customer to interact with AWS services? (Choose two.)

  A. Command line interface
  B. On-premises
  C. Software Development Kits
  D. Software-as-a-service
  E. Hybrid
  A. Command line interface
  C. Software Development Kits

• Question 476:

  A company suspects that its AWS resources are being used for harmful network activities, including port scanning and malware distribution.

  A. AWS Abuse team
  B. AWS technical account manager (TAM)
  C. AWS Concierge Support
  D. AWS Support team
  A. AWS Abuse team

• Question 477:

  A company wants to migrate its high performance computing (HPC) application to Amazon EC2 instances. The application has multiple components. The application must have fault tolerance and must have the ability to fail over automatically.

  Which AWS infrastructure solution will meet these requirements with the LEAST latency between components?

  A. Multiple AWS Regions
  B. Multiple edge locations
  C. Multiple Availability Zones
  D. Regional edge caches
  A. Multiple AWS Regions

• Question 478:

  Which of the following are benefits of using AWS Trusted Advisor? (Select TWO)

  A. Providing high-performance container orchestration
  B. Creating and rotating encryption keys
  C. Detecting underutilized resources to save costs
  D. Improving security by proactively monitoring the AWS environment
  E. Implementing enforced tagging across AWS resources
  C. Detecting underutilized resources to save costs
  D. Improving security by proactively monitoring the AWS environment

  ---

  Explanation/Reference:

  https://aws.amazon.com/premiumsupport/technology/trusted-advisor/

• Question 479:

  A company is requesting Payment Card Industry (PCI) reports that validate the operating effectiveness of AWS security controls. How should the company obtain these reports?

  A. Contact AWS Support.
  B. Download reports from AWS Artifact.
  C. Download reports from AWS Security Hub
  D. Contact an AWS technical account manager (TAM)
  B. Download reports from AWS Artifact.

• Question 480:

  A company is running multiple workloads in the AWS Cloud and recently began investigating ways to reduce costs. The company is already running fault-tolerant workloads on Amazon EC2 that perform periodic checkpoints in case of an outage.

  Which AWS service or pricing model can provide the GREATEST cost savings?

  A. Capacity Reservations
  B. Amazon Lightsail
  C. Spot Instances
  D. Dedicated Hosts
  C. Spot Instances