Answer-first summary for fast verification
Answer: Enable AWS Macie, define DLP policies, and use Macie to automatically discover and classify sensitive data. Monitor and respond to findings using AWS Security Hub and AWS Config.
The most comprehensive and automated approach to implementing a DLP strategy is to enable AWS Macie, define DLP policies, and use Macie to automatically discover and classify sensitive data. Monitoring and responding to findings can be done using AWS Security Hub and AWS Config, which provide a centralized view of compliance and security posture.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Your organization is implementing a data loss prevention (DLP) strategy and you are responsible for ensuring that sensitive data is protected in AWS. Describe the steps you would take to implement a DLP strategy using AWS services, and explain how you would use AWS Macie to automate the discovery and classification of sensitive data.
A
Enable AWS Macie, define DLP policies, and use Macie to automatically discover and classify sensitive data. Monitor and respond to findings using AWS Security Hub and AWS Config.
B
Manually review and classify sensitive data, define DLP policies, and use AWS Config to monitor and enforce compliance.
C
Enable AWS Macie, define DLP policies, and use Macie to automatically discover and classify sensitive data. Monitor and respond to findings using AWS CloudTrail and AWS Config.
D
Enable AWS Macie, define DLP policies, and use Macie to automatically discover and classify sensitive data. Monitor and respond to findings using AWS CloudTrail and AWS Security Hub.