AWS Certified Cloud Practitioner — Question 698

A company is reviewing its operating policies.

Which policy complies with guidance in the security pillar of the AWS Well-Architected Framework?

Answer options

• A. Ensure that employees have access to all company data.
• B. Expand employees' permissions as they gain more experience.
• C. Grant all privileges and access to all users.
• D. Apply security requirements at all layers of a process.

Correct answer: D

Explanation

The security pillar of the AWS Well-Architected Framework advocates for a defense-in-depth approach, which involves applying security requirements at all layers of a workload. In contrast, options A, B, and C violate the fundamental security principle of least privilege by granting excessive, unnecessary access to users.