End of Course Assessment of AWS Fundamentals Addressing Security Risk

Which statement is true?

How many types of VPC Endpoints are available?

Which of these AWS resources cannot be monitored using VPC Flow logs?

Which of the following are monitoring and logging services available on AWS? Select all that apply.

Which of the following sections from Trusted Advisor exists under the Well-Architected Framework as a pillar as well?

Which solution below grants AWS Management Console access to an DevOps engineer?

Which of these services doesn’t authenticate users to access AWS resources using existing credentials on their current corporate identity?

What is the main difference between Cognito User Pool and Cognito Identity Pool?

What security mechanism can add an extra layer of protection to your AWS account in addition to a username password combination?

If a user wanted to read from a DynamoDB table what policy would you attach to their user profile?

What are valid MFA or Multi-factor Authentication options available to use on AWS? Select all that apply.

What requirement must you adhere to in order to deploy an AWS CloudHSM?

How much data can you encrypt/decrypt using an Customer Master Key?

The purpose of encrypting data when it is in transit between systems and services is to prevent (choose 3 correct answers):

Which protocol below is an industry-standard cryptographic protocol used for encrypting data at the transport layer?

How do you encrypt an existing un-encrypted EBS volume?

When you enable encryption for RDS DB instance, what would not be encrypted?

What language does Amazon Athena support?

What is the name of the model that shows how security is handled by AWS and it’s customers in the AWS Cloud?

What is a customer access endpoint?