Practice Test

True or False: AWS Compliance maintains strict governance controls in accordance with international regulations and standards.

  • True
  • False

Correct Answer: True

Explanation: AWS Compliance provides assurance through adherence to stringent governance controls aligned with both local and international regulations and standards.

Which of the following AWS programs contributes to maintaining compliance with data privacy and protection requirements?

  • A) AWS Artifact
  • B) AWS Storage Gateway
  • C) AWS Machine Learning
  • D) AWS Fargate

Correct Answer: A) AWS Artifact

Explanation: AWS Artifact is an on-demand portal where users can access AWS security and compliance reports and select online agreements.

Multiple Select: Which two are global compliance laws for which AWS provides infrastructure?

  • A) GDPR
  • B) CCPA
  • C) HEPA
  • D) SLA

Correct Answer: A) GDPR and B) CCPA.

Explanation: GDPR and CCPA are global compliance laws that govern the collection and use of personal data. AWS provides the infrastructure to support compliance with these laws.

Single Select: Which AWS service helps organizations who need to comply with regulatory standards and frameworks such as ISO 27001, HIPAA, and FedRAMP by detecting non-compliance?

  • A) AWS Trusted Advisor
  • B) AWS Config
  • C) AWS CloudTrail
  • D) AWS Inspector

Correct Answer: B) AWS Config.

Explanation: AWS Config continuously audits and assesses your AWS resource configurations to ensure they comply with internal policies, industry guidelines, and regulations.

True or False: AWS Compliance does not cover industry-specific standards like HIPAA for healthcare and FERPA for education.

  • True
  • False

Correct Answer: False.

Explanation: AWS Compliance includes both general standards like GDPR, and specific industry standards like HIPAA for healthcare and FERPA for education.

Which of the following is not a type of AWS Compliance report?

  • A) Service Organization Control (SOC)
  • B) Payment Card Industry Data Security Standard (PCI DSS)
  • C) Infrastructure Security Compliance (ISC)
  • D) Federal Risk and Authorization Management Program (FedRAMP)

Correct Answer: C) Infrastructure Security Compliance (ISC).

Explanation: Infrastructure Security Compliance is not one of the reports provided by AWS Compliance, while SOC, PCI DSS, and FedRAMP are.

True or False: AWS is responsible for the security “in” the cloud while the customer is responsible for security “of” the cloud.

  • True
  • False

Correct Answer: True.

Explanation: According to the AWS Shared Responsibility model, AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud, while the customer is responsible for their own customer content and applications.

Which AWS service enables governance, compliance, operational auditing, and risk auditing of your AWS account?

  • A) AWS CloudTrail
  • B) AWS Config
  • C) AWS Inspector
  • D) AWS Fraud Detector

Correct Answer: A) AWS CloudTrail

Explanation: AWS CloudTrail allows governance, compliance, operational auditing and risk auditing of AWS account by logging account activity and actions across the AWS infrastructure in real-time.

True or false: Amazon Elastic Compute Cloud (Amazon EC2) instances are always PCI DSS compliant by default.

  • True
  • False

Correct Answer: False.

Explanation: Although AWS provides a secure and compliant infrastructure, the customer is responsible for ensuring their EC2 instances are configured in a manner that maintains compliance with specific industry requirements.

Which of the following industries has specific AWS services and features to meet its compliance needs?

  • A) Manufacturing
  • B) Healthcare
  • C) Entertainment
  • D) Sport

Correct Answer: B) Healthcare

Explanation: AWS provides specific services and features aimed at healthcare organizations needing to adhere to laws, regulations, and compliance requirements, including the Health Insurance Portability and Accountability Act (HIPAA).

Interview Questions

What does AWS Compliance mean?

AWS Compliance is a part of Amazon’s cloud services that enables customers to understand the robust controls in place at AWS to maintain security and data protection. AWS Compliance Programs consider the security, privacy, and compliance needs across different geographic locations and industry sectors.

What is the purpose of AWS Artifact?

AWS Artifact provides on-demand access to AWS’s security and compliance reports and select online agreements. It’s designed to aid organizations in managing compliance and reduce the time to gather audit evidence.

How does AWS manage and maintain compliance in multiple geographic locations?

AWS maintains compliance by adhering to local regulations and managing its resources based on the compliance standards of the specific region. AWS has data centers in different global regions to meet local compliance and data residency requirements.

What standard is implemented by AWS to maintain a high level of security within cloud computing services?

AWS achieves high levels of security through the implementation of the AWS Well-Architected Framework which provides architectural best practices across the pillars of operational excellence, security, reliability, performance efficiency, and cost optimization.

How does AWS support customers’ data privacy regulations compliance, like GDPR?

AWS provides services and resources that help customers with data privacy regulations, such as GDPR. AWS provides encryption, pseudonymization, access controls, and other tools customers can use to help meet GDPR requirements.

What is the AWS Shared Responsibility Model?

The AWS Shared Responsibility Model is a security model where both AWS and the customer share responsibilities to ensure total system security. While AWS is responsible for the security of the cloud, customers are responsible for security in the cloud.

Can you name a few compliance programs that AWS participates in?

AWS takes part in many compliance programs including ISO 27001, ISO 27017, ISO 27018, SOC, PCI DSS, and HIPAA.

What are AWS Security Hubs?

AWS Security Hub provides a comprehensive view of the security state of AWS resources. It collects and aggregates findings from AWS services and from the third-party products that are integrated into AWS services.

How does AWS manage data sovereignty requirements?

AWS helps customers address data sovereignty requirements by allowing them to store data in AWS Regions of their choice. AWS does not move or duplicate customer data from its chosen region without specific customer consent.

Who is responsible for defining the operating procedures and controls within customer applications hosted on AWS?

In the AWS Shared Responsibility Model, defining the operating procedures and controls within customer applications is the responsibility of the customer.

Leave a Reply

Your email address will not be published. Required fields are marked *