Modules/Cloud Security/AWS Associate & Security L-1

AWS Associate & Security L-1

0% Complete

AWS Associate certifications validate foundational to intermediate cloud expertise, covering services like EC2, S3, RDS, and networking. AWS Security focuses on securing cloud environments using IAM, encryption, threat detection, and compliance frameworks. It involves implementing security best practices, such as the Principle of Least Privilege, monitoring with AWS Security Hub, and automating security responses with AWS Lambda. Both domains ensure secure, scalable, and efficient cloud operations.

1 Tasks0/20 Solved0/100 Points

Progress0%

Task 1

Investigating a Security Incident

You are an AWS Certified Solutions Architect Associate with security expertise, working for an e-commerce company. A security alert is triggered due to unusual outbound traffic from an EC2 instance.

Investigation:
CloudTrail & GuardDuty detect unauthorized API calls from an IAM user.
IAM logs show multiple failed login attempts.
AWS Config reveals an open SSH port (22) to the public internet.

Mitigation & Response:
Disable compromised IAM user and rotate credentials.
Isolate the EC2 instance using VPC Security Groups.
Take snapshots for forensic analysis.
Implement MFA for all IAM users and enforce strict access control.
Use AWS Systems Manager Session Manager instead of SSH.
Update AWS WAF rules to block suspicious IPs.

Post-Incident Security Enhancements:
Enable AWS Security Hub for centralized security management.
Automate security responses using AWS Lambda (e.g., disabling compromised accounts).
Monitor continuously with Amazon GuardDuty and CloudWatch.

0/20 solved0/100 points0%

Questions

Question 1.

What type of storage does Amazon S3 provide?

Attempts: 0

Your answer

Question 2.

What AWS service allows you to run serverless code?

Attempts: 0

Your answer

Question 3.

Which AWS service provides a fully managed relational database?

Attempts: 0

Your answer

Question 4.

What is the primary use of Amazon CloudFront?

Attempts: 0

Your answer

Question 5.

Which service enables private connections between VPCs and AWS services?

Attempts: 0

Your answer

Question 6.

What AWS service is used for DNS and domain name management?

Attempts: 0

Your answer

Question 7.

Which storage service is ideal for structured NoSQL databases?

Attempts: 0

Your answer

Question 8.

What AWS service is used for monitoring resources and logs?

Attempts: 0

Your answer

Question 9.

Which AWS storage class is best for long-term archival storage?

Attempts: 0

Your answer

Q10

Question 10.

What AWS service is used to automate application deployments?

Attempts: 0

Your answer

Q11

Question 11.

Which database service is best for petabyte-scale analytics?

Attempts: 0

Your answer

Q12

Question 12.

What service helps protect against DDoS attacks?

Attempts: 0

Your answer

Q13

Question 13.

What AWS service offers a managed Kubernetes solution?

Attempts: 0

Your answer

Q14

Question 14.

Which AWS service is used for Infrastructure as Code (IaC)?

Attempts: 0

Your answer

Q15

Question 15.

Which storage service is designed for file-based workloads?

Attempts: 0

Your answer

Q16

Question 16.

What AWS service is used to create a virtual private cloud?

Attempts: 0

Your answer

Q17

Question 17.

What AWS service can be used to manage encryption keys?

Attempts: 0

Your answer

Q18

Question 18.

Which AWS service is used for server migration?

Attempts: 0

Your answer

Q19

Question 19.

What AWS service provides virtual desktops?

Attempts: 0

Your answer

Q20

Question 20.

Which AWS service is used to stream real-time data?

Attempts: 0

Your answer

Modules/Cloud Security/AWS Associate & Security L-1

AWS Associate & Security L-1

0% Complete

1 Tasks0/20 Solved0/100 Points

Progress0%

Task 1

Investigating a Security Incident

Investigation:
CloudTrail & GuardDuty detect unauthorized API calls from an IAM user.
IAM logs show multiple failed login attempts.
AWS Config reveals an open SSH port (22) to the public internet.

0/20 solved0/100 points0%

Questions

Question 1.

What type of storage does Amazon S3 provide?

Attempts: 0

Your answer

Question 2.

What AWS service allows you to run serverless code?

Attempts: 0

Your answer

Question 3.

Which AWS service provides a fully managed relational database?

Attempts: 0

Your answer

Question 4.

What is the primary use of Amazon CloudFront?

Attempts: 0

Your answer

Question 5.

Which service enables private connections between VPCs and AWS services?

Attempts: 0

Your answer

Question 6.

What AWS service is used for DNS and domain name management?

Attempts: 0

Your answer

Question 7.

Which storage service is ideal for structured NoSQL databases?

Attempts: 0

Your answer

Question 8.

What AWS service is used for monitoring resources and logs?

Attempts: 0

Your answer

Question 9.

Which AWS storage class is best for long-term archival storage?

Attempts: 0

Your answer

Q10

Question 10.

What AWS service is used to automate application deployments?

Attempts: 0

Your answer

Q11

Question 11.

Which database service is best for petabyte-scale analytics?

Attempts: 0

Your answer

Q12

Question 12.

What service helps protect against DDoS attacks?

Attempts: 0

Your answer

Q13

Question 13.

What AWS service offers a managed Kubernetes solution?

Attempts: 0

Your answer

Q14

Question 14.

Which AWS service is used for Infrastructure as Code (IaC)?

Attempts: 0

Your answer

Q15

Question 15.

Which storage service is designed for file-based workloads?

Attempts: 0

Your answer

Q16

Question 16.

What AWS service is used to create a virtual private cloud?

Attempts: 0

Your answer

Q17

Question 17.

What AWS service can be used to manage encryption keys?

Attempts: 0

Your answer

Q18

Question 18.

Which AWS service is used for server migration?

Attempts: 0

Your answer

Q19

Question 19.

What AWS service provides virtual desktops?

Attempts: 0

Your answer

Q20

Question 20.

Which AWS service is used to stream real-time data?

Attempts: 0

Your answer