AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A healthcare company stores patient information that includes sensitive records in Amazon S3. They are subject to strict compliance regulations and need an automated way to classify their data at scale and be alerted of any potential exposure risks. Which service should they implement for continuous analysis of their stored content and to receive automated security alerts in case of unsecured sensitive data?
Configure AWS Secrets Manager for rotating credentials and alerting on data exposure.
Implement Amazon GuardDuty for continuous threat detection and data classification in S3.
Adopt Amazon Macie for content analysis and automated alerts on insecure data storage.
Use Amazon Cognito to manage patient identity verification and to secure sensitive records.
Amazon Macie is the AWS service specifically crafted for the purpose of analyzing and securing content that resides within Amazon S3. It uses machine learning and pattern matching to automatically recognize sensitive information such as healthcare records. When it detects unsecured data or abnormal data access patterns, it triggers alerts. This fits the requirement of the healthcare company to keep its patient records secure according to compliance regulations. Amazon GuardDuty is a threat detection service that monitors malicious activities rather than classifying content. While AWS Secrets Manager secures and rotates secrets such as database credentials and API keys, it does not classify or monitor object content within S3. Lastly, Amazon Cognito focuses on user identity management and would not assist with the data classification or monitoring needs of the healthcare company.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Amazon Macie and how does it work?
Open an interactive chat with Bash
What are some key features of Amazon Macie?
Open an interactive chat with Bash
How does Amazon Macie compare to Amazon GuardDuty?