A question about big data security


#1

A data engineer chooses Amazon DynamoDb as a data store for a regulated application. This application must be submitted to regulators for review. the data engineer needs to provide a control framework that lists the security controls from the process to follow to add new users down to the physical controls of the data center, including items like security guards and cameras.

How should this control mapping be achieved using AWS?

A. Request AWS third-party audit reports and/or the aws quality addendum and map the aws responsibilities to the controls that must be provided.

B. Request data center Temporary Auditor access to an aws data center to verify the control mapping.

C. Request relevant SLAs and security guidelines for Amazon DynamoDb and define these guidelines within the application’s architecture to map the control framework.

D. Request Amazon DynamoDB system architecture designs to detemine how to map the aws responsibilities to the control that must be provided.


#2

A. Request AWS third-party audit reports and/or the aws quality addendum and map the aws responsibilities to the controls that must be provided.