Security and Compliance Flashcards

Cards for SOA-C03 IAM, KMS, CloudTrail, AWS Config, GuardDuty, Security Hub, and compliance operations.

About This Flashcard Deck

This flashcard deck contains 6 cards covering key Security and Compliance concepts for the SOA-C03 exam. Cards for SOA-C03 IAM, KMS, CloudTrail, AWS Config, GuardDuty, Security Hub, and compliance operations. Use active recall by attempting to answer each question before revealing the answer. Research shows that flashcard-based active recall is one of the most effective study techniques for certification exams.

Card 1 of 6

Question

What always overrides IAM allows?

Click to reveal answer

Answer

An explicit deny.

Click to flip back

All Security and Compliance Flashcards

1

Q: What always overrides IAM allows?

A: An explicit deny.

2

Q: Which service records AWS account API activity?

A: AWS CloudTrail.

3

Q: Which service evaluates resource configuration compliance?

A: AWS Config.

4

Q: Which service aggregates security findings from multiple AWS services?

A: AWS Security Hub.

5

Q: Which service detects suspicious account or workload activity?

A: Amazon GuardDuty.

6

Q: Which KMS document controls key administration and usage?

A: The KMS key policy.

More SOA-C03 Flashcard Decks

CloudWatch Flashcards6 cardsSystems Manager Flashcards6 cardsReliability Flashcards6 cardsDeployment Automation Flashcards6 cardsNetworking Flashcards6 cards
← SOA-C03 Study HubFree Mock Exam30-Day Study Plan