A company maintains a data lake in Amazon S3, which is required to be accessed by numerous applications distributed across multiple AWS accounts. The company's information security policy mandates that the S3 bucket should not be accessible via the public internet and that each application must have only the necessary permissions to operate. To comply with these security requirements, a solutions architect is tasked with implementing an S3 access point that is exclusively accessible from specific VPCs for each application. What are the appropriate steps for the solutions architect to take in order to achieve this setup? (Select two options.) | AWS Certified Solutions Architect - Professional Quiz