A company is deploying a new web application on AWS and is using Amazon Elastic Compute Cloud (EC2) instances to host its web servers. The company wants to ensure it follows security best practices. Which of the following actions is the company solely responsible for?
Ensuring physical security of the data centers where the EC2 instances are hosted
Implementing disaster recovery mechanisms for the underlying EC2 service in case of a region failure
Installing the latest hypervisor security patches on the host system where the EC2 instances are running
Configuring security groups for the EC2 instances correctly to ensure only authorized traffic can access the web servers
In the AWS shared responsibility model, AWS is responsible for protecting the infrastructure that runs AWS services in the AWS Cloud, while the customer is responsible for securing the data they put into the cloud services and the configurations of the services they use. In this scenario, configuring security groups correctly is under the customer’s purview as part of 'Security in the Cloud.' Security groups act as a virtual firewall for instances to control inbound and outbound traffic. Patch management of the EC2 instances, including the operating system, is also a customer responsibility, but more related to managing the guest OS, not directly related to the application they are running. Protecting the underlying infrastructure (data centers, hardware, etc.) and disaster recovery for AWS services are AWS’s responsibility.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are security groups in AWS?
Open an interactive chat with Bash
What is the AWS shared responsibility model?
Open an interactive chat with Bash
What is patch management in the context of EC2 instances?
Open an interactive chat with Bash
AWS Cloud Practitioner CLF-C02
Security and Compliance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access