AWS Certified Security – Specialty Free Practice Exam Questions

457 real AWS Certified Security – Specialty exam questions with answers and AI explanations. Amazon Web Services certification prep — page 31 of 46.

  1. Question 331: A company has a requirement that no Amazon EC2 security group can allow SSH access from the CIDR block 0.0.0.0/0. The company wants to monitor compliance with…
  2. Question 332: A company has decided to use AWS Key Management Service (AWS KMS) for all of its encryption keys. The company plans to create all of its keys as customer manag…
  3. Question 333: A security engineer needs to implement a solution to create and control the keys that a company uses for cryptographic operations. The security engineer must c…
  4. Question 334: A company is testing a new version of its application. The company is using a public Amazon API Gateway API to expose the application. Currently, the company w…
  5. Question 335: A company has identified two security concerns. One concern is unencrypted Amazon Elastic Block Store (Amazon EBS) volumes. The other concern is public IP addr…
  6. Question 336: A company has public certificates that are managed by AWS Certificate Manager (ACM). The certificates are either imported certificates or managed certificates…
  7. Question 337: A company has an organization in AWS Organizations. The company’s security team is developing automation to capture Amazon EC2 forensic evidence within any AWS…
  8. Question 338: A company has two VPCs that are in the same AWS account. One VPC is located in the us-east-1 Region, and the other VPC is located in the us-west-2 region. The…
  9. Question 339: A company receives an email message from the AWS Abuse team. The message states that an IAM user in the company's AWS account has had an associated access key…
  10. Question 340: A security engineer has designed a VPC to segment private traffic from public traffic. The VPC includes two Availability Zones. The security engineer has provi…