AWS Cloud Practitioner (CLF-C02) - Domain 2 - Security and Compliance
1. What is AWS Responsibility?: is responsible for protecting the infrastructure that runs all of
the services offered in the AWS Cloud. This infrastructure is com- posed of the hardware,
software, networking, and facilities that run AWS Cloud services.
2. What is Customer Responsibility?: is determined by the AWS Cloud services that a customer
selects. This determines the amount of configuration work the customer must perform as part
of their security responsibilities.
3. Whst is Amazon CloudWatch?: is a service which provides a reliable, scalable, and flexible
monitoring solution that you can start using within minutes.You no longer need to set up,
manage, and scale your own monitoring systems and infrastructure.
4. What is AWS CloudTrail?: is an AWS service that helps you enable operational and risk
auditing, governance, and compliance of your AWS account. Actions taken by a user, role, or an
AWS service are recorded as events in this service. Events include actions taken in the AWS
Management Console, AWS Command Line Interface, and AWS SDKs and APIs.
Note:
This service is active from the moment you create your account.
5. What is AWS Audit Manager?: helps you continually audit your AWS usage to simplify how
you manage risk and compliance with regulations and industry standards, this is down
through automated evidence collection.
6. What is AWS Config?: is a service which lets you quickly and safely deploy application
configurations.
7. What is the importance of protecting the AWS root user account?:
8. What task can only the AWS root user perform?:
9. What is Principle of Least Privilege?:
10.What is AWS Identity and Access Management (IAM)?: is a web service that helps you securely
control access to AWS resources. You can centrally manage users, security credentials such as
access keys, and permissions that control which AWS resources users and applications can
access.
11.What is AWS IAM Identity Center (AWS Single Sign-On)?: is the recom- mended AWS service
1/
3
1. What is AWS Responsibility?: is responsible for protecting the infrastructure that runs all of
the services offered in the AWS Cloud. This infrastructure is com- posed of the hardware,
software, networking, and facilities that run AWS Cloud services.
2. What is Customer Responsibility?: is determined by the AWS Cloud services that a customer
selects. This determines the amount of configuration work the customer must perform as part
of their security responsibilities.
3. Whst is Amazon CloudWatch?: is a service which provides a reliable, scalable, and flexible
monitoring solution that you can start using within minutes.You no longer need to set up,
manage, and scale your own monitoring systems and infrastructure.
4. What is AWS CloudTrail?: is an AWS service that helps you enable operational and risk
auditing, governance, and compliance of your AWS account. Actions taken by a user, role, or an
AWS service are recorded as events in this service. Events include actions taken in the AWS
Management Console, AWS Command Line Interface, and AWS SDKs and APIs.
Note:
This service is active from the moment you create your account.
5. What is AWS Audit Manager?: helps you continually audit your AWS usage to simplify how
you manage risk and compliance with regulations and industry standards, this is down
through automated evidence collection.
6. What is AWS Config?: is a service which lets you quickly and safely deploy application
configurations.
7. What is the importance of protecting the AWS root user account?:
8. What task can only the AWS root user perform?:
9. What is Principle of Least Privilege?:
10.What is AWS Identity and Access Management (IAM)?: is a web service that helps you securely
control access to AWS resources. You can centrally manage users, security credentials such as
access keys, and permissions that control which AWS resources users and applications can
access.
11.What is AWS IAM Identity Center (AWS Single Sign-On)?: is the recom- mended AWS service
1/
3
