Databricks Certified Data Engineer - Professional

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Enable SSL/TLS for data in transit and configure the cluster to use a customer-managed encryption key for data at rest, ensuring that the encryption keys are under your control.

Option B is the correct choice because it meets all the specified requirements: it ensures data in transit is secured with SSL/TLS, uses customer-managed keys for encrypting data at rest for compliance, and avoids the additional costs associated with third-party services. This approach provides a balance between security, compliance, and cost-effectiveness. The other options either fail to meet the compliance requirement for customer-managed keys (Option A and C) or introduce unnecessary costs (Option D).

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Enable SSL/TLS for data in transit and configure the cluster to use a customer-managed encryption key for data at rest, ensuring that the encryption keys are under your control.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

In your role as a Databricks Certified Data Engineer, you are tasked with enhancing the security of a Databricks cluster to comply with stringent organizational policies that mandate encryption for both data at rest and data in transit. The solution must not only meet these security requirements but also adhere to cost constraints by avoiding unnecessary third-party services. Additionally, the solution should allow for the use of customer-managed keys for encryption to meet compliance standards. Considering these requirements, which of the following configurations would you implement? (Choose one option)

Simulated

Enable SSL/TLS for data in transit and rely on Databricks' built-in encryption for data at rest, as it simplifies the configuration process and reduces costs.

22.1%

Enable SSL/TLS for data in transit and configure the cluster to use a customer-managed encryption key for data at rest, ensuring that the encryption keys are under your control.

52.5%

Utilize Databricks' built-in encryption for data at rest and set up a custom SSL/TLS certificate for data in transit, leveraging internal resources for certificate management.

23.0%

Implement a third-party encryption solution for both data at rest and data in transit to ensure the highest level of security, despite the higher costs.