Answer-first summary for fast verification
Answer: Use Amazon S3 object lock to enforce data retention policies, and encrypt data at rest using AWS KMS with customer-managed keys.
To meet the data retention requirement of 10 years and ensure data security, the healthcare organization should use Amazon S3 object lock to enforce data retention policies and prevent accidental or malicious deletion of objects. Additionally, they should encrypt data at rest using AWS KMS with customer-managed keys to maintain full control over the encryption keys and meet regulatory compliance requirements.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A healthcare organization is required to maintain patient records for a minimum of 10 years to comply with industry regulations. They plan to store this data in Amazon S3. Which combination of AWS services and features should they use to meet the data retention requirement and ensure data security?
A
Use Amazon S3 lifecycle policies to transition objects to Amazon Glacier for long-term archival, and encrypt data at rest using AWS KMS.
B
Use Amazon S3 versioning to retain multiple versions of objects, and encrypt data in transit using AWS Certificate Manager.
C
Use Amazon S3 object lock to enforce data retention policies, and encrypt data at rest using AWS KMS with customer-managed keys.
D
Use Amazon S3 cross-region replication to replicate objects across multiple regions, and encrypt data in transit using AWS Certificate Manager.
No comments yet.