Answer-first summary for fast verification
Answer: Amazon Macie
## Explanation Amazon Macie is the correct AWS service for identifying personally identifiable information (PII) in Amazon S3. Here's why: ### Amazon Macie Features: - **PII Detection**: Macie uses machine learning and pattern matching to automatically discover, classify, and protect sensitive data - **Credit Card Detection**: Specifically designed to identify credit card numbers, social security numbers, and other sensitive information - **S3 Integration**: Works directly with Amazon S3 buckets to scan and classify data - **Automated Discovery**: Continuously monitors S3 buckets for new sensitive data ### Why Other Options Are Incorrect: - **Amazon Inspector**: Security assessment service for EC2 instances and container images, not for PII detection in S3 - **AWS Shield**: DDoS protection service for web applications, not for data classification - **Amazon GuardDuty**: Threat detection service that monitors for malicious activity and unauthorized behavior, but not specifically for PII discovery ### Use Case: Amazon Macie is specifically designed for data security and privacy use cases, making it the ideal choice for organizations needing to comply with data protection regulations like GDPR, HIPAA, or PCI DSS by identifying and protecting sensitive information in their S3 storage.
Author: Ritesh Yadav
Ultimate access to all questions.
A company needs to identify personally identifiable information (PII), such as credit card numbers, from data that is stored in Amazon S3. Which AWS service should the company use to meet this requirement?
A
Amazon Inspector
B
AWS Shield
C
Amazon GuardDuty
D
Amazon Macie
No comments yet.