-
Notifications
You must be signed in to change notification settings - Fork 25
8.q
1) What are the components in the automated encryption prevention, detection and remediation workflow in this lesson?
A. AWS SSM Session Manager, AWS CodeDeploy, cfn_nag, GitLab, KMS, and AWS CodeBuild.
B. AWS Step Functions, AWS CodePipeline, AWS CodeCommit, KMS, AWS CodeBuild, and AWS SSM Automation.
C. AWS CloudFormation, AWS Config Rules, KMS, AWS CodePipeline, AWS CodeCommit, cfn_nag, AWS CodeBuild, and Amazon CloudWatch Event Rules.
D. Terraform, AWS CloudWatch Event Rules, cfn_nag, KMS, and AWS SSM Compliance.
2) How is AWS CloudFormation used in the automated encryption prevention, detection and remediation workflow lesson?
A. Provisions Amazon CloudWatch Event Rules, AWS Config, AWS Config Rules, and deployment pipeline resources in a single template that is deployed to AWS as a CloudFormation stack.
B. Config and Config Rules are manually provisioned while the deployment pipeline resources are provisioned in a CloudFormation template.
C. Provisions AWS Config and AWS Config Rules in one template and deployment pipeline resources in a separate template. Config Rules updates are applied on a schedule.
D. Provisions AWS Config and AWS Config Rules in one template and deployment pipeline resources in a separate template. Config Rules updates are applied manually as part of a bootstrapping process.
3) How many Config Recorders can you create in a given AWS Region?
A. 0
B. 1
C. 2
D. 10
- Introduction
- Labs
- The Current State of Encryption
- Setup Development Environment
- Lesson 1: Automating AWS Resources
- Lesson 2: Key Management
- Lesson 3: Developing with Encryption
- Lesson 4: Encryption in Transit
- Lesson 5: Encryption at Rest
- Lesson 6: Detecting Encrypted Resources
- Lesson 7: Logging and Searching KMS Keys
- Lesson 8: Continuous Encryption
- Summary