ExpertMedium1 markMultiple Choice
AWS SAP-C02 · Question 22 · Domain 2.3: Security Controls
A healthcare company is designing a new application that processes PHI (Protected Health Information). They must ensure end-to-end encryption, strict network isolation, and automated auditing of all API calls. Which THREE AWS services are required to meet these compliance mandates? (Select THREE)
A healthcare company is designing a new application that processes PHI (Protected Health Information). They must ensure end-to-end encryption, strict network isolation, and automated auditing of all API calls. Which THREE AWS services are required to meet these compliance mandates? (Select THREE)
Answer options:
A.
Amazon Inspector
B.
AWS Key Management Service (KMS)
C.
AWS Direct Connect
D.
AWS CloudTrail
E.
Amazon Macie
F.
AWS PrivateLink (VPC Endpoints)
G.
AWS Shield Advanced
How to approach this question
Match the requirements (encryption, auditing, isolation) to the services.
Full Answer
KMS handles encryption. CloudTrail handles API auditing. PrivateLink provides network isolation by ensuring traffic between VPCs and AWS services does not traverse the public internet.
Common mistakes
Choosing Macie for auditing API calls.
Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 2
75 questions · hints · full answers · grading
More questions from this exam
Q01A company is setting up a multi-account AWS environment using AWS Organizations. They need to ens...EasyQ02An enterprise needs to connect its on-premises data center to AWS. They require a dedicated, priv...EasyQ03A company wants to share a single AWS Transit Gateway across multiple AWS accounts within their A...EasyQ04An architect needs to design a highly available database architecture that spans multiple AWS Reg...EasyQ05A global financial institution is migrating its core banking application to AWS. The application ...Medium