NSE 7 – Public Cloud Security 7.2 — Question 2

Which two Amazon Web Services (AWS) features do you use for the transit virtual private cloud (VPC) automation process to add new spoke VPCs? (Choose two.)

Answer options

• A. Amazon CloudWatch
• B. Amazon S3 bucket
• C. AWS Transit Gateway
• D. AWS Security Hub

Correct answer: A, B

Explanation

Amazon CloudWatch is essential for monitoring and automating processes within AWS, while an Amazon S3 bucket can be used to store configurations or data necessary for the VPC automation. AWS Transit Gateway and AWS Security Hub, although important services, do not directly contribute to the automation process for adding spoke VPCs.