AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
A company uses Amazon S3 to store data, which must comply with regulations prohibiting the inclusion of personally identifiable information (PII). The company has identified PII in some S3 objects and requires an automated solution to detect PII and alert the security team. Which AWS service and notification method should be implemented?
A company uses Amazon S3 to store data, which must comply with regulations prohibiting the inclusion of personally identifiable information (PII). The company has identified PII in some S3 objects and requires an automated solution to detect PII and alert the security team. Which AWS service and notification method should be implemented?
Explanation:
The correct answer is A. Amazon Macie is specifically designed to discover and protect sensitive data, including PII, in Amazon S3. By using Amazon Macie, you can create an Amazon EventBridge rule to filter the SensitiveData event type from Macie findings and send an SNS notification to the security team. This solution provides the automation and notification capabilities required to detect and respond to PII in S3 buckets. Option C is also related to Amazon Macie but uses SQS instead of SNS for notifications, which is less immediate compared to SNS notifications.