SnowPro Advanced: Architect — Question 167

A global company with operations in North America, Europe, and Asia needs to secure its Snowflake environment, focus on data privacy, secure connectivity, and access control. The company uses AWS as their primary cloud provider and needs to ensure that all data transfers are secure and comply with regional regulations.

How can these requirements be met? (Choose two).

Answer options

• A. Configure SAML 2.0 to authenticate users in the Snowflake environment.
• B. Configure detailed logging and monitoring of all network traffic to and from Snowflake using Snowflake’s native capabilities.
• C. Use public endpoints with SSL encryption to secure data transfers between Snowflake and the company’s AWS infrastructure.
• D. Configure network policies to restrict access to Snowflake based on IP ranges corresponding to corporate offices.
• E. Use AWS PrivateLink to establish private connectivity between the company’s Snowflake account and its AWS VPCs.

Correct answer: D, E

Explanation

The correct answers, D and E, help ensure secure access and data transfer within the Snowflake environment. Network policies (D) restrict access based on IP addresses, enhancing security, while AWS PrivateLink (E) provides private connectivity, ensuring compliance and security during data exchanges. Options A, B, and C, while beneficial for authentication and monitoring, do not directly address the need for secure connectivity and access control as required by the company.