🃏 Security and Compliance Flashcards

Cards for SOA-C03 IAM, KMS, CloudTrail, AWS Config, GuardDuty, Security Hub, and compliance operations.

Card 1 of 6

Question

What always overrides IAM allows?

Click to reveal answer

Answer

An explicit deny.

Click to flip back

All Security and Compliance Flashcards

1

Q: What always overrides IAM allows?

A: An explicit deny.

2

Q: Which service records AWS account API activity?

A: AWS CloudTrail.

3

Q: Which service evaluates resource configuration compliance?

A: AWS Config.

4

Q: Which service aggregates security findings from multiple AWS services?

A: AWS Security Hub.

5

Q: Which service detects suspicious account or workload activity?

A: Amazon GuardDuty.

6

Q: Which KMS document controls key administration and usage?

A: The KMS key policy.

More SOA-C03 Flashcard Decks

🃏CloudWatch Flashcards6 cards🃏Systems Manager Flashcards6 cards🃏Reliability Flashcards6 cards🃏Deployment Automation Flashcards6 cards🃏Networking Flashcards6 cards
← SOA-C03 Study HubFree Mock Exam30-Day Study Plan