1. Your Lambda function needs to access a database using a connection string and a regularly rotated password. These items must be stored securely and cannot be hardcoded inside of the application. Which of the following AWS service can help accomplish this?

A) Amazon GuardDuty
B) AWS CloudTrail
C) Amazon Cognito
D) AWS Key Management Service (KMS)



2. Which of the following AWS services allows administrator-level access (root user) to the operating system? (select 2)(Select 2answers)

A) Amazon EMR cluster
B) Amazon DynamoDB database
C) Amazon EC2 instance
D) Amazon SQS queue



3. As a Cloud Architect, you are responsible for preparing the migration from your on-premises data center to the AWS Cloud. What security feature can you use with SFTP to authenticate the client and server communications?

A) Dedicated Network Information System (NIS) service.
B) Public and private key pair exchange.
C) IP routing table lookup and validation.
D) Media Access Control (MAC) address authentication.



4. Select all true statements about serverless scaling. (select 2)(Select 2answers)

A) Application architects shouldn't consider costs when scaling with serverless services.
B) Serverless computing allows you to scale much quicker than with server-based applications.
C) Serverless services such as AWS Lambda don't suport scaling.
D) With serverless, you donâ??t need to configure aout-scaling because youâ??re using managed services that have built-in horizontal scaling.



5. You are responsible for managing your Amazon VPC. At what level is a Network ACL applied?

A) Region level
B) EC2 instance level
C) Availability Zone level
D) Subnet level