AWS Certified Cloud Practitioner(CLF-C02)

The AWS Certified Cloud Practitioner(CLF-C02) were last updated on today.
  • Viewing page 7 out of 370 pages.
  • Viewing questions 31-35 out of 1,850 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #31 Topic 1

A company is deploying a machine learning (ML) research project that will require a lot of compute power over several months. The ML processing jobs do not need to run at specific times. Which Amazon EC2 instance purchasing option will meet these requirements at the lowest cost?

  • A . On-Demand Instances
  • B . Spot Instances
  • C . Reserved Instances
  • D . edicated Instances
Suggested Answer: B
NOTE: Spot Instances allow you to take advantage of unused EC2 capacity in the AWS cloud. Spot Instances are available at up to a 90% discount compared to On-Demand prices. Moreover, ML jobs which do not need to run at specific times are a good fit for Spot Instances as they may be interrupted due to changing Spot market conditions.
Question #32 Topic 1

A company has deployed applications on Amazon EC2 instances. The company needs to assess application vulnerabilities and must identify infrastructure deployments that do not meet best practices. Which AWS service can the company use to meet these requirements?

  • A . WS Trusted dvisor
  • B . Amazon Inspector
  • C . AWS onfig
  • D . Amazon Guarduty
Suggested Answer: B
NOTE: Amazon Inspector is an AWS service that helps improve the security and compliance of applications deployed on Amazon EC2. It automatically assesses applications for vulnerabilities or deviations from best practices. Thus, it is the most appropriate choice for the given scenario.
Question #33 Topic 1

A company wants to monitor for misconfigured security groups that are allowing unrestricted access to specific ports. Which AWS service will meet this requirement?

  • A . WS Trusted dvisor
  • B . Amazon CloudWatch
  • C . Amazon GuardDuty
  • D . AWS Health ashboard
Suggested Answer: A
NOTE: AWS Trusted Advisor is a tool that helps AWS users to observe best practices for the usage of AWS by inspecting the environment of AWS. It provides advice for cost optimization, performance, security, fault tolerance and service limitations. Therefore, it can aid in detecting security groups that are not configured correctly and allowing unrestricted access.
Question #34 Topic 1

Which option is a customer responsibility when using Amazon DynamoDB under the AWS Shared Responsibility Model?

  • A . Physical security of DynamoDB
  • B . Patching of DynamoD
  • C . Access to DynamoDB tables
  • D . Encryption of data at rest in ynamoB
Suggested Answer: C
NOTE: In the AWS Shared Responsibility Model, AWS is responsible for the security 'of' the cloud, such as physical security and the security of the underlying infrastructure, while the customer is responsible for security 'in' the cloud, which includes managing access to specific resources. In this case, access to DynamoDB tables is a customer's responsibility.
Question #35 Topic 1

Which AWS service or resource provides answers to the most frequently asked security-related questions that AWS receives from its users?

  • A AWS Artifact
  • B . Amazon Connect
  • C . AWS hatbot
  • D . AWS Knowledge Center
Suggested Answer: D
NOTE: AWS Artifact provides answers to the most frequently asked security-related questions that AWS receives from its users. It's a self-service hub for AWS-specific security and compliance information. Amazon Connect, AWS Chatbot, and AWS Knowledge Center doesn't have this specific feature.
Previous Questions Next Questions