AWS Certified Data Analytics – Specialty — Question 101

A data analyst is designing an Amazon QuickSight dashboard using centralized sales data that resides in Amazon Redshift. The dashboard must be restricted so that a salesperson in Sydney, Australia, can see only the Australia view and that a salesperson in New York can see only United States (US) data.
What should the data analyst do to ensure the appropriate data security is in place?

Answer options

• A. Place the data sources for Australia and the US into separate SPICE capacity pools.
• B. Set up an Amazon Redshift VPC security group for Australia and the US.
• C. Deploy QuickSight Enterprise edition to implement row-level security (RLS) to the sales table.
• D. Deploy QuickSight Enterprise edition and set up different VPC security groups for Australia and the US.

Correct answer: C

Explanation

The correct answer is C because deploying QuickSight Enterprise edition and implementing row-level security (RLS) allows the analyst to restrict data visibility based on user attributes, ensuring that salespeople only see the relevant data for their region. Options A and B do not address the need for user-specific data access, while option D focuses on security groups, which do not provide the granular data access control required.