ExamGecko
Search Search Login
Home Home / Amazon / CLF-C02
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which AWS service gives users on-demand, sell-service access to AWS compliance control reports?
Which AWS service provides storage-optimized and compute-optimized device configurations?
A company is running a reporting web server application on Amazon EC2 instances. The application runs once every week and once again at the end of the month. The EC2 instances can be shut down when they are not in use. What is the MOST cost-effective billing model for this use case?
A company needs to manage multiple logins across AWS accounts within the same organization in AWS Organizations. Which AWS service should the company use to meet this requirement?
Which design principle aligns with performance efficiency pillar of the AWS Well-Architected Framework?
According to the AWS shared responsibility model, which of the following are AWS responsibilities? (Select TWO.)
Which AWS service can create a private network connection from on premises to the AWS Cloud?
Which AWS service or feature allows users to securely store encrypted credentials and retrieve these credentials when required?
A company purchased Amazon EC2 Standard Reserved Instances (Rls) for a workload in the AWS Cloud. The company needs to move part of the workload to an instance family that does not match the instance family of these Standard RIs. How can the company take advantage of the Standard RIs that it no longer needs?
Which options does AWS make available for customers who want to learn about security in the cloud in an instructor-led setting? (Select TWO.)

Question 337 - CLF-C02 discussion

Report
Export

A company is building an application on AWS. The application needs to comply with credit card regulatory requirements. The company needs proof that the AWS services and deployment are in compliance.

Which actions should the company take to meet these requirements? (Select TWO.)

A.
Use Amazon Inspector to submit the application for certification.
Answers
A.
Use Amazon Inspector to submit the application for certification.
B.
Ensure that the application's underlying hardware components comply with requirements.
Answers
B.
Ensure that the application's underlying hardware components comply with requirements.
C.
Use AWS Artifact to access AWS documents about the compliance of the services.
Answers
C.
Use AWS Artifact to access AWS documents about the compliance of the services.
D.
Get the compliance of the application certified by a company assessor.
Answers
D.
Get the compliance of the application certified by a company assessor.
E.
Use AWS Security Hub to certify the compliance of the application.
Answers
E.
Use AWS Security Hub to certify the compliance of the application.
Suggested answer: C, D

Explanation:

Using AWS Artifact to access AWS documents about the compliance of the services, and getting the compliance of the application certified by a company assessor are actions that the company should take to meet the requirements of complying with credit card regulatory requirements. AWS Artifact is a service that provides on-demand access to AWS security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. AWS Artifact can help you demonstrate compliance with credit card regulatory requirements by providing you with proof that the AWS services and deployment are in compliance. Getting the compliance of the application certified by a company assessor is an action that the company should take to ensure that the application meets the specific requirements of the credit card industry. A company assessor is an independent third-party entity that is qualified to assess the compliance of the application with the relevant standards and regulations. Using Amazon Inspector to submit the application for certification is not an action that the company should take, because Amazon Inspector is a service that helps you improve the security and compliance of your applications deployed on AWS by automatically assessing them for vulnerabilities and deviations from best practices, but it does not provide certification for the applications. Ensuring that the application's underlying hardware components comply with requirements is not an action that the company should take, because the application is deployed on AWS, and AWS is responsible for the security and compliance of the underlying hardware components. This is part of the shared responsibility model, where AWS is responsible for security of the cloud, and customers are responsible for security in the cloud. Using AWS Security Hub to certify the compliance of the application is not an action that the company should take, because AWS Security Hub is a service that gives you a comprehensive view of your security posture across your AWS accounts and helps you check your environment against security industry standards and best practices, but it does not provide certification for the applications.

Show Answer
asked 16/09/2024
YASSIR EL GHAZY
54 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms