A company uses an Amazon S3 bucket to store static images for its website. The company configured permissions to allow access to Amazon S3 objects by privileged users only. What should a solutions architect do to protect against data loss? (Select TWO.)

• A.Use MFA Delete to require multi-factor authentication to delete an object.
• B.Configure an S3 lifecycle rule to transition objects to Amazon S3 Glacier.
• C.Enable access togging on the S3 bucket.
• D.Enable server-side encryption on the S3 bucket.
• E.Enable versioning on the S3 bucket

Comment: *

Name: *

Email: *

Verification: *

A company has a custom application running on an Amazon EC2 instance that
* Reads a large amount of data from Amazon S3
* Performs a multi-stage analysis.
Writes the results to Amazon DynamoDB
The application writes a significant number of large, temporary files during the multi-stage analysis. The process performance depends on the temporary storage performance. What would be the fastest storage option for holding the temporary files?

• A.Multiple Amazon EBS drives with Provisioned IOPS and EBS optimization
• B.Multiple Amazon S3 buckets with Transfer Acceleration for storage
• C.Multiple Amazon EFS volumes using the Network File System version 4 1 (NFSv4 1) protocol
• D.Multiple instance store volumes with software RAID 0.

Comment: *

Name: *

Email: *

Verification: *

A company is rebelling its data canter and wants to securely transfer 50 TB of data lo AWS *ilhm 2 weeks. The existing data center has a Site-to-Site VPN connection to AWS that is 90 % utilized Which AWS service should a solutions architect use to meet these requirements?

• A.AWS Snowball Edge Storage Optimized
• B.AWS Storage Gateway
• C.AWS Direct Conned
• D.AWS DataSync with a VPC endpoint

Comment: *

Name: *

Email: *

Verification: *

A company has developed a new content-sharing application that runs on Amazon Elastic Container Service (Amazon ECS). The application runs on Amazon Linux Docker tasks that use the Amazon EC2 launch type. The application requires a storage solution that has the following characteristics:
* Accessibility (or multiple ECS tasks through bind mounts
* Resiliency across Availability Zones
* Burstable throughput of up to 3 Gbps
* Ability to be scaled up over time
Which storage solution meets these requirements?

• A.Launch an Amazon Elastic File System (Amazon EFS) instance. Configure the ECS task definitions to mount the EFS Instance volume at launch.
• B.Create a Provisioned IOPS SSD (io2) Amazon Elastic Block Store (Amazon EBS) volume with Multi-Attach set to enabled. Attach the EBS volume to the ECS EC2 instance Configure ECS task definitions to mount the EBS instance volume at launch.
• C.Launch an EC2 instance with several Provisioned IOPS SSD (k>2) Amazon Elastic Block Store (Amazon EBS) volumes attached m a RAID 0 configuration. Configure the EC2 instance as an NFS storage server. Configure ECS task definitions to mount the volumes at launch.
• D.Launch an Amazon FSx for Windows File Server Multi-AZ instance. Configure the ECS task definitions to mount the Amazon FSx instance volume at launch.

Comment: *

Name: *

Email: *

Verification: *

A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster experimentation and agility. However, the security operations team is concerned that the developers could attach the existing administrator policy, which would allow the developers to circumvent any other security policies.
How should a solution architect address this issue?

• A.Prevent the developers from attaching any policies and duties to the security option team.
• B.Create an Amazon SNS topic to send an alert every time a developer create a new policy.
• C.Use service control policies to disable IAM across all account in the organizational unit.
• D.Set an IAM permission boundary on the developer IAM role that explicitly denies of attaching the administrator policy

Comment: *

Name: *

Email: *

Verification: *