Module: AWS Cloud Security

These are the module that comes under the Trail Called “Learn the AWS Cloud Practitioner Essentials“. That is given below:

In this tutorial, we are going to cover the Module called “AWS Cloud Security
“. In this lecture, you are going to Use the AWS security model and services to keep your applications safe. Solve the quiz on Trailhead.

#1. Learn About the Shared Responsibility Model

Solve these quizzes and get +100 points

Q1) According to the shared responsibility model, which of the following is the responsibility of AWS?

#I)Providing security awareness training to your employees

#II)Protecting AWS’s global infrastructure

#III)Encrypting network traffic and client-side data

#IV)Patching the guest operating system and applications

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] II)Protecting AWS’s global infrastructure [/bg_collapse]

Q2) True or false: Based on the shared responsibility model, customers are responsible for controlling access to their content stored in AWS.

#I)True

#II)False

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] I)True [/bg_collapse]

Check the Quiz to Earn 100 out of 100 Points

The second attempt earns 50 points. Three or more earn 25 points.

#2. Control Access with AWS Identity and Access Management

Solve these quizzes and get +100 points

Q1) Which of the following best describes an IAM role?

#I)The email address and password that you use to log in

#II)An object that defines the permissions associated with an identity or resource

#III)An identity that you create in your account to have specific permissions

#IV)A set of functions and procedures that connect an application to backend services

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] III)An identity that you create in your account to have specific permissions [/bg_collapse]

Q2) True or false: Multi-factor authentication (MFA) is enabled by default for AWS accounts.

#I)True

#II)False

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] II)False [/bg_collapse]

Check the Quiz to Earn 100 out of 100 Points

The second attempt earns 50 points. Three or more earn 25 points.

#3. Learn About AWS Security Services

Solve these quizzes and get +100 points

Q1) Which of the following descriptions best describes Amazon Inspector?

#I)A dashboard to aggregate AWS security alerts and findings

#II)A service to filter incoming network requests

#III)A service that automates vulnerability assessments

#IV)A dashboard for auditing activity within your AWS account

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] III)A service that automates vulnerability assessments [/bg_collapse]

Q2) Which of the following tasks can be done within AWS Security Hub?

#I)Creating and implementing rules to filter network traffic

#II)Prioritizing the actions to take on security and compliance issues

#III)Storing encryption keys in a single location

#IV)Organizing users into groups

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] II)Prioritizing the actions to take on security and compliance issues [/bg_collapse]

Check the Quiz to Earn 100 out of 100 Points

The second attempt earns 50 points. Three or more earn 25 points.

#4. Protect Against DOS and DDoS Attacks with AWS Shield

Solve these quizzes and get +100 points

Q1) Which of the following best describes a distributed denial-of-service (DDoS) attack?

#I)An attempt to discover the password for a system or service through trial and error

#II)An unusually high volume of network traffic that originates from multiple sources

#III)Malware that exploits system vulnerabilities and spreads across multiple applications

#IV)An unusually high volume of network traffic that originates from a single source

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] II)An unusually high volume of network traffic that originates from multiple sources [/bg_collapse]

Q2) Which of the following features is provided with AWS Shield Advanced but not AWS Shield Standard?

#I)Protection against common DDoS attacks

#II)Automatically applying mitigation against common network traffic attacks

#III)Integration with Amazon CloudFront

#IV)Protection against UDP reflection attacks

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] III)Integration with Amazon CloudFront [/bg_collapse]

Check the Quiz to Earn 100 out of 100 Points

The second attempt earns 50 points. Three or more earn 25 points.

#6. Use AWS Services to Stay Compliant

Solve these quizzes and get +100 points

Q1) Which of the following best describes the purpose of AWS Artifact?

#I)A service for creating and managing AWS resources with templates

#II)A service for tracking user activity and API usage within AWS

#III)A service that provides on-demand access to compliance reports and managing AWS agreements

#IV)A service for managing documents within a relational database

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] III)A service that provides on-demand access to compliance reports and managing AWS agreements [/bg_collapse]

Q2) Which of the following best describes the purpose of penetration testing?

#I)Distributing incoming network traffic across multiple targets

#II)Discovering vulnerabilities within your applications and resources

#III)Auditing all of the actions that have been taken within your AWS infrastructure

#IV)Modeling and provisioning resources in accordance with AWS best practices

[bg_collapse view=”button-green” color=”#4a4949″ expand_text=”Show Answers” collapse_text=”Hide Answers” ] II)Discovering vulnerabilities within your applications and resources [/bg_collapse]

Check the Quiz to Earn 100 out of 100 Points

The second attempt earns 50 points. Three or more earn 25 points.

List of Modules:

Pramod Kumar Yadav is from Janakpur Dham, Nepal. He was born on December 23, 1994, and has one elder brother and two elder sisters. He completed his education at various schools and colleges in Nepal and completed a degree in Computer Science Engineering from MITS in Andhra Pradesh, India. Pramod has worked as the owner of RC Educational Foundation Pvt Ltd, a teacher, and an Educational Consultant, and is currently working as an Engineer and Digital Marketer.



Leave a Comment