Design Secure Applications and Architectures

/15

AWS Certified Solutions Architect – Associate (SAA-C03) – Design Secure Applications and Architectures

Prepare for the AWS Certified Solutions Architect – Associate (SAA-C03) exam with our quizzes designed to cover critical areas in designing secure applications and architectures.

1 / 15

1) Which AWS service helps you automate security assessments of applications deployed on AWS?

A) AWS Inspector

B) Amazon Macie

C) AWS Shield

D) AWS Config

2 / 15

2) Which service should you use to enforce encryption for data at rest in Amazon S3?

A) AWS KMS

B) AWS IAM

C) AWS Secrets Manager

D) AWS WAF

3 / 15

3) Which AWS service should you use to manage encryption keys for your applications?

A) AWS CloudHSM

B) AWS WAF

C) AWS Secrets Manager

D) AWS KMS

4 / 15

4) Which AWS service helps you detect sensitive data stored in Amazon S3 buckets?

A) Amazon GuardDuty

B) AWS Secrets Manager

C) Amazon Macie

D) AWS Shield

5 / 15

5) Which AWS service should you use to store and rotate database credentials securely?

A) AWS Secrets Manager

B) AWS CloudTrail

C) AWS KMS

D) AWS Directory Service

6 / 15

6) How can you ensure secure communication between microservices running in a Kubernetes cluster on AWS?

A) Use IAM roles and policies

B) Use AWS App Mesh

C) Use AWS Shield

D) Use AWS Direct Connect

7 / 15

7) To protect your application from SQL injection and cross-site scripting attacks, which service should you use?

A) AWS CloudHSM

B) AWS Shield

C) AWS Secrets Manager

D) AWS WAF

8 / 15

8) How can you enforce multi-factor authentication (MFA) for IAM users accessing the AWS Management Console?

A) Use IAM policies

B) Use AWS CloudTrail

C) Use AWS Config

D) Enable MFA on the IAM user settings

9 / 15

9) You need to implement a secure, multi-account AWS environment and enforce compliance across all accounts. Which combination of services should you use?

A) AWS IAM and Amazon Inspector

B) AWS Shield and AWS WAF

C) AWS CloudTrail and AWS Systems Manager

D) AWS Organizations and AWS Config

10 / 15

10) To implement a zero-trust security model, which AWS service can you use to control access to your applications based on the principle of least privilege?

A) Amazon Cognito

B) AWS IAM

C) AWS Shield

D) AWS WAF

11 / 15

11) How can you manage access to your applications without managing user credentials directly?

A) Use AWS CloudHSM

B) Use Amazon Cognito

C) Use IAM users and groups

D) Use AWS Shield

12 / 15

12) You need to secure API endpoints for a web application. Which combination of services should you use?

A) Amazon API Gateway and AWS WAF

B) Amazon CloudFront and AWS Shield

C) Amazon S3 and AWS IAM

D) AWS Lambda and AWS Secrets Manager

13 / 15

13) How can you securely manage access to EC2 instances in a production environment?

A) Use AWS Shield

B) Use EC2 key pairs and IAM roles

C) Use AWS CloudTrail

D) Use Amazon CloudWatch

14 / 15

14) How can you ensure that your VPC is securely configured to prevent unauthorized access?

A) Use NACLs and Security Groups

B) Use Amazon RDS

C) Use AWS CloudTrail

D) Use AWS Shield

15 / 15

15) How can you implement a secure strategy for managing application secrets in your AWS environment?

A) Use AWS Secrets Manager

B) Store secrets in environment variables

C) Store secrets in Amazon S3

D) Use IAM policies

Your score is

The average score is 25%

Exit