AWS Certified Developer – Associate (DVA-C02) — Question 79

A company stores its data in data tables in a series of Amazon S3 buckets. The company received an alert that customer credit card information might have been exposed in a data table on one of the company's public applications. A developer needs to identify all potential exposures within the application environment.

Which solution will meet these requirements?

Answer options

• A. Use Amazon Athena to run a job on the S3 buckets that contain the affected data. Filter the findings by using the SensitiveData:S3Object/Personal finding type.
• B. Use Amazon Macie to run a job on the S3 buckets that contain the affected data. Filter the findings by using the SensitiveData:S3Object/Financial finding type.
• C. Use Amazon Macie to run a job on the S3 buckets that contain the affected data. Filter the findings by using the SensitiveData:S3Object/Personal finding type.
• D. Use Amazon Athena to run a job on the S3 buckets that contain the affected data. Filter the findings by using the SensitiveData:S3Object/Financial finding type.

Correct answer: B

Explanation

The correct answer is B because Amazon Macie is specifically designed to discover and protect sensitive data, including financial information like credit card details, in S3 buckets. The other options either use Amazon Athena, which is not tailored for identifying sensitive data, or filter findings using the wrong finding type, which would not isolate the relevant financial data.