ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 188 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 188
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A company is storing data in Amazon S3 Glacier. A security engineer implemented a new vault lock policy for 10 TB of data and called the initiate-vault-lock operation 12 hours ago. The audit team identified a typo in the policy that is allowing unintended access to the vault.

What is the MOST cost-effective way to correct this error?

  • A. Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again.
  • B. Copy the vault data to a new S3 bucket. Delete the vault Create a new vault with the data.
  • C. Update the policy to keep the vault lock in place.
  • D. Update the policy. Call the initiate-vault-lock operation again to apply the new policy.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Bad_Mat at Oct. 21, 2024, 4:01 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rinip86277
1 week ago
Selected Answer: A
Agree with A
upvoted 1 times
...
Pat9595
4 months, 2 weeks ago
Selected Answer: A
A. Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again. ✅ Why? The S3 Glacier Vault Lock feature has a lock-in period before the policy becomes immutable. The "initiate-vault-lock" operation starts a 24-hour window where the policy can still be modified or aborted. Since the vault lock was initiated only 12 hours ago, you can still abort it, correct the policy, and restart the process without extra cost.
upvoted 2 times
...
IPLogic
6 months, 2 weeks ago
Selected Answer: A
The most cost-effective way to correct the error is: A. Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again. Since the vault lock policy is still in the “InProgress” state, you can abort the lock operation, correct the typo in the policy, and then initiate the vault lock operation again. This approach avoids the need to move large amounts of data or create new vaults, making it the most efficient solution.
upvoted 2 times
...
Bad_Mat
8 months ago
The answer is A
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel