Which of the following is the customer's responsibility under the AWS shared responsibility model? (Choose two.)
A. Maintain the configuration of infrastructure devices.
B. Maintain patching and updates within the hardware infrastructure.
C. Maintain the configuration of guest operating systems and applications.
D. Manage decisions involving encryption options.
E. Maintain infrastructure hardware.
A company uses AWS security services and tools. The company needs a service to help manage the security alerts and must organize the alerts into a single dashboard.
Which AWS service should the company use to meet these requirements?
A. Amazon GuardDuty
B. Amazon Inspector
C. Amazon Macie
D. AWS Security Hub
A company wants to run its workloads in the AWS Cloud effectively, reduce management overhead, and improve processes.
Which AWS Well-Architected Framework pillar represents these requirements?
A. Reliability
B. Operational excellence
C. Performance efficiency
D. Cost optimization
A company uses Amazon S3 to store records that can contain personally identifiable information (PII). The company wants a solution that can monitor all S3 buckets for PII and immediately alert staff about vulnerabilities.
Which AWS service will meet these requirements?
A. Amazon GuardDuty
B. Amazon Detective
C. Amazon Macie
D. AWS Shield
Which AWS service allows users to download security and compliance reports about the AWS infrastructure on demand?
A. Amazon GuardDuty
B. AWS Security Hub
C. AWS Artifact
D. AWS Shield
An external auditor has requested that a company provide a list of all its IAM users, including the status of users' credentials and access keys.
What is the SIMPLEST way to provide this information?
A. Create an IAM user account for the auditor, granting the auditor administrator permissions.
B. Take a screenshot of each user's page in the AWS Management Console, then provide the screenshots to the auditor.
C. Download the IAM credential report, then provide the report to the auditor.
D. Download the AWS Trusted Advisor report, then provide the report to the auditor.
A company plans to run a compute-intensive workload that uses graphics processing units (GPUs).
Which Amazon EC2 instance type should the company use?
A. Accelerated computing
B. Compute optimized
C. Storage optimized
D. General purpose
Which of the following are features of network ACLs as they are used in the AWS Cloud? (Choose two.)
A. They are stateless.
B. They are stateful.
C. They evaluate all rules before allowing traffic.
D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic.
E. They operate at the instance level.
According to the AWS shared responsibility model, the customer is responsible for applying the latest security updates and patches for which of the following?
A. Amazon DynamoDB
B. Amazon EC2 instances
C. Amazon RDS instances
D. Amazon S3
Which Amazon S3 storage class is MOST cost-effective for unknown access patterns?
A. S3 Standard
B. S3 Standard-Infrequent Access (S3 Standard-IA)
C. S3 One Zone-Infrequent Access (S3 One Zone-IA)
D. S3 Intelligent-Tiering
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CLF-C02 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.