ExpertEasy1 markMultiple Choice
AWS SAA-C03 · Question 09 · Domain 1.3: Data Security
A healthcare company stores petabytes of patient records in Amazon S3. The compliance team needs to automatically discover and classify Personally Identifiable Information (PII) and Protected Health Information (PHI) across all buckets. Which service should be used?
A healthcare company stores petabytes of patient records in Amazon S3. The compliance team needs to automatically discover and classify Personally Identifiable Information (PII) and Protected Health Information (PHI) across all buckets. Which service should be used?
Answer options:
A.
Amazon GuardDuty
B.
AWS Security Hub
C.
Amazon Macie
D.
AWS Config
How to approach this question
Keywords: 'discover and classify PII/PHI in S3'. Amazon Macie is purpose-built for this.
Full Answer
C.Amazon Macie✓ Correct
Amazon Macie is a data security and data privacy service that uses machine learning and pattern matching to discover and protect sensitive data, such as PII and PHI, stored in Amazon S3.
Common mistakes
Selecting GuardDuty, which is for network and account threat detection, not data classification.
Practice the full AWS SAA-C03 Practice Exam 3
65 questions · hints · full answers · grading
More questions from this exam
Q01A company stores sensitive documents in an Amazon S3 bucket. The security team requires that only...EasyQ02A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...MediumQ03A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (AL...EasyQ04A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized ...MediumQ05A company needs to encrypt data at rest in Amazon RDS and manage database credentials securely. T...Medium