Answer-first summary for fast verification
Answer: Use AWS CodeBuild with artifact encryption to replace the Jenkins instance running on EC2 instances.
The best solution is to use AWS CodeBuild with artifact encryption to replace Jenkins instances running on EC2. AWS CodeBuild is a fully managed build service that eliminates the need to patch and upgrade instances, unlike running Jenkins on EC2. It also offers automatic artifact encryption, ensuring compliance with the security requirements. This managed service approach provides the most maintainable solution among the given options. While other options may provide encryption, they do not address maintenance as effectively as CodeBuild.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company has implemented containerized in-house quality control applications and currently operates Jenkins on Amazon EC2 instances that necessitate regular patching and upgrading. The compliance officer has mandated that a DevOps engineer must initiate encryption for build artifacts, which include sensitive company intellectual property. What is the most maintainable approach for the DevOps engineer to achieve this encryption of build artifacts?
A
Automate patching and upgrading using AWS Systems Manager on EC2 instances and encrypt Amazon EBS volumes by default.
B
Deploy Jenkins to an Amazon ECS cluster and copy build artifacts to an Amazon S3 bucket with default encryption enabled.
C
Leverage AWS CodePipeline with a build action and encrypt the artifacts using AWS Secrets Manager.
D
Use AWS CodeBuild with artifact encryption to replace the Jenkins instance running on EC2 instances.
No comments yet.