AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A healthcare organization is required to comply with strict data privacy regulations, such as HIPAA, for storing and processing patient medical records. They need to implement encryption for data at rest and in transit, enforce granular access controls, and maintain detailed audit logs for compliance purposes. Which combination of AWS services should they use?
Explanation:
To meet the strict data privacy and compliance requirements for storing and processing patient medical records, the healthcare organization should use Amazon S3 with server-side encryption for secure and durable data storage, AWS CloudHSM for hardware-based key management with higher levels of security and compliance, AWS Certificate Manager (ACM) for managing SSL/TLS certificates to encrypt data in transit, and AWS CloudTrail for detailed auditing and logging of all API activity to demonstrate compliance.