AWS Certified Security – Specialty Free Practice Exam Questions

457 real AWS Certified Security – Specialty exam questions with answers and AI explanations. Amazon Web Services certification prep — page 9 of 46.

  1. Question 86: A company plans to migrate a sensitive dataset to Amazon S3. A Security Engineer must ensure that the data is encrypted at rest. The encryption solution must e…
  2. Question 87: A Security Engineer is defining the logging solution for a newly developed product. Systems Administrators and Developers need to have appropriate access to ev…
  3. Question 88: A corporate cloud security policy states that communications between the company's VPC and KMS must travel entirely within the AWS network and not use public s…
  4. Question 89: A company had one of its Amazon EC2 key pairs compromised. A Security Engineer must identify which current Linux EC2 instances were deployed and used the compr…
  5. Question 90: A company uses user data scripts that contain sensitive information to bootstrap Amazon EC2 instances. A Security Engineer discovers that this sensitive inform…
  6. Question 91: A Security Engineer discovered a vulnerability in an application running on Amazon ECS. The vulnerability allowed attackers to install malicious code. Analysis…
  7. Question 92: While analyzing a company's security solution, a Security Engineer wants to secure the AWS account root user. What should the Security Engineer do to provide t…
  8. Question 93: Which of the following are valid event sources that are associated with web access control lists that trigger AWS WAF rules? (Choose two.)
  9. Question 94: A Security Engineer is working with the development team to design a supply chain application that stores sensitive inventory data in an Amazon S3 bucket. The…
  10. Question 95: A Security Engineer is setting up an AWS CloudTrail trail for all regions in an AWS account. For added security, the logs are stored using server-side encrypti…