AWS Certified Data Analytics – Specialty — Question 25

A retail company's data analytics team recently created multiple product sales analysis dashboards for the average selling price per product using Amazon
QuickSight. The dashboards were created from .csv files uploaded to Amazon S3. The team is now planning to share the dashboards with the respective external product owners by creating individual users in Amazon QuickSight. For compliance and governance reasons, restricting access is a key requirement. The product owners should view only their respective product analysis in the dashboard reports.
Which approach should the data analytics team take to allow product owners to view only their products in the dashboard?

Answer options

• A. Separate the data by product and use S3 bucket policies for authorization.
• B. Separate the data by product and use IAM policies for authorization.
• C. Create a manifest file with row-level security.
• D. Create dataset rules with row-level security.

Correct answer: D

Explanation

The correct answer is D because creating dataset rules with row-level security allows the data analytics team to restrict the visibility of data based on the user, ensuring each product owner sees only their respective product analysis. Options A and B focus on broader access controls rather than specific row-level security, which does not meet the requirement of limiting product visibility. Option C, while related to security, does not directly address the need for controlling access at the dashboard level.