Practice Test 2 | AWS Certified Cloud Practitioner | CLF-C01 | Dumps | Mock Test

Question 37

In the AWS Well-Architected Framework, which of the following is NOT a Security design principle to design solutions in AWS?

A. Apply Security only at the edge of the network.
B. Protect Data at rest & in transit.
C. Implement a strong Identity foundation.
D. Enable Traceability.

Security needs to be applied at all network layers, like edge of network, VPC, all instances & application with the VPC. Applying Security controls at the edge of the network is not an efficient security control & against security design principles.

As per AWS Well-Architected Framework, the following are the design principles for security in the cloud:

· Implement a strong identity foundation.

· Enable traceability.

· Apply security at all layers.

· Automate security best practices.

· Protect data in transit and at rest.

· Keep people away from data.

· Prepare for security events.

Options B, C, & D are incorrect as these are part of security design principles that need to be followed while implementing security controls in the cloud.

For more information on Security Design Principle with AWS Well-Architected Framework, refer to the following URL:

https://docs.aws.amazon.com/wellarchitected/latest/framework/sec-design.html

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66

CLF-C01

Practice Test 2 | AWS Certified Cloud Practitioner | CLF-C01 | Dumps | Mock Test

Question 37

Answer

Ads Blocker Detected!!!