1. Your IT Security team has identified a number of vulnerabilities across critical EC2 Instances in the company SWS Account. Which would be the easiest way to ensure these vulnerabilities are remediated? Please select

A) Use AWS(Amazon Web Service) CLI commands to download the updates and patch the servers.
B) Create AWS(Amazon Web Service) Lambda functions to download the updates and patch the servers.
C) Use AWS(Amazon Web Service) Inspector to patch the servers
D) Use AWS(Amazon Web Service) Systems Manager to patch the servers



2. Which of the following is not a best practice for carrying out a security audit? Please select:

A) Whenever there are changes in your organization
B) Conduct an audit if you ever suspect that an unauthorized person might have accessed your account
C) Conduct an audit on a yearly basis
D) Conduct an audit if application instances have been added to your account



3. Your CTO is very worried about the security of your AWS(Amazon Web Service) account. How best can you prevent hackers from completely hijacking your account? Please select:

A) Don?t write down or remember the root account password after creating the AWS(Amazon Web Service) account
B) Use AWS(Amazon Web Service) AM Geo.Lock and disallow anyone from logging in except for in your city.
C) Use short but complex password on the root account and any administrators
D) Use MFA on all users and accounts, especially on the root account.



4. There is a requirement for a company to transfer large amounts of data between AWS(Amazon Web Service) and an on-premise location. There is an additional requirement for low latency and high consistency traffic to AWS. Given these requirements how would you design a hybrid architecture? Choose the correct answer from the options below Please select:

A) Create a VPC peering connection between AWS(Amazon Web Service) and the Customer gateway.
B) Provision a Direct Connect connection to an AWS(Amazon Web Service) region using a Direct Connect partner.
C) Create a VPN tunnel for private connectivity, which increases network consistency and reduces latency
D) Create an IPSec tunnel for private connectivity, which increases network consistency and reduces latency



5. Your company uses AWS(Amazon Web Service) to host its resources. They have the following requirements 1) Record all API calls and Transitions 2) Help in understanding what resources are there in the account 3) Facility to allow auditing credentials and logins Which services would suffice the above requirements

A) Cloud Trail. PAM Credential Reports. AWS(Amazon Web Service) SNS
B) Cloud Trall. AWS(Amazon Web Service) Config. lAM Credential Reports
C) AWS Inspector, Cloud Trail. lAM Credential Reports
D) AWS SQS, lAM Credential Reports. Cloud Trail