Amazon Exam SAA-C03 Topic 4 Question 44 Discussion

Actual exam question for Amazon's SAA-C03 exam

Question #: 44
Topic #: 4

A company has one million users that use its mobile app. The company must analyze the data usage in near-real time. The company also must encrypt the data in near-real time and must store the data in a centralized location in Apache Parquet format for further processing.

Which solution will meet these requirements with the LEAST operational overhead?

ACreate an Amazon Kinesis data stream to store the data in Amazon S3. Create an Amazon Kinesis Data Analytics application to analyze the data. Invoke an AWS Lambda function to send the data to the Kinesis Data Analytics application.

BCreate an Amazon Kinesis data stream to store the data in Amazon S3. Create an Amazon EMR cluster to analyze the data. Invoke an AWS Lambda function to send the data to the EMR cluster.

CCreate an Amazon Kinesis Data Firehose delivery stream to store the data in Amazon S3. Create an Amazon EMR cluster to analyze the data.

DCreate an Amazon Kinesis Data Firehose delivery stream to store the data in Amazon S3. Create an Amazon Kinesis Data Analytics application to analyze the data

Show Suggested Answer

Suggested Answer: A

A: How do you protect your data in transit?

Best Practices:

Implement secure key and certificate management: Store encryption keys and certificates securely and rotate them at appropriate time intervals while applying strict access control; for example, by using a certificate management service, such as AWS Certificate Manager (ACM).

Enforce encryption in transit: Enforce your defined encryption requirements based on appropriate standards and recommendations to help you meet your organizational, legal, and compliance requirements.

Automate detection of unintended data access: Use tools such as GuardDuty to automatically detect attempts to move data outside of defined boundaries based on data classification level, for example, to detect a trojan that is copying data to an unknown or untrusted network using the DNS protocol.

Authenticate network communications: Verify the identity of communications by using protocols that support authentication, such as Transport Layer Security (TLS) or IPsec.

https://wa.aws.amazon.com/wat.question.SEC_9.en.html

by Altha at Sep 08, 2024, 09:39 PM

Limited Time Offer

25%

Off

Get Premium SAA-C03 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Jess

28 days ago

Option C? More like Option 'See ya, operational overhead!' Boom, problem solved!

upvoted 0 times

Vicente

19 days ago

Option C sounds like the best choice for reducing operational overhead.

upvoted 0 times

...

2 months ago

I agree with Sage. Option C looks like the simplest and most efficient solution. The Firehose delivery stream will handle the near-real-time encryption and storage, and the EMR cluster can handle the analysis.

upvoted 0 times

Martina

19 days ago

I agree, the Firehose delivery stream and EMR cluster will handle everything with minimal operational overhead.

upvoted 0 times

...

Torie

29 days ago

Option C is definitely the way to go. It's the most efficient solution.

upvoted 0 times

...

2 months ago

I think option A is the best choice because it involves using Amazon Kinesis Data Analytics application for analyzing the data in near-real time.

upvoted 0 times

...