Free SCS-C01 Exam Dumps

Question 131

- (Exam Topic 2)
An application makes calls to AWS services using the AWS SDK. The application runs on Amazon EC2 instances with an associated IAM role. When the application attempts to access an object within an Amazon S3 bucket; the Administrator receives the following error message: HTTP 403: Access Denied.
Which combination of steps should the Administrator take to troubleshoot this issue? (Select three.)

Correct Answer:BCE

Question 132

- (Exam Topic 2)
A company recently experienced a DDoS attack that prevented its web server from serving content. The website is static and hosts only HTML, CSS, and PDF files that users download.
Based on the architecture shown in the image, what is the BEST way to protect the site against future attacks while minimizing the ongoing operational overhead?
SCS-C01 dumps exhibit

Correct Answer:D
https://docs.aws.amazon.com/AmazonS3/latest/dev/WebsiteHosting.html

Question 133

- (Exam Topic 2)
A company has multiple VPCs in their account that are peered, as shown in the diagram. A Security Engineer wants to perform penetration tests of the Amazon EC2 instances in all three VPCs.
How can this be accomplished? (Choose two.)
SCS-C01 dumps exhibit

Correct Answer:BD
https://aws.amazon.com/security/penetration-testing/

Question 134

- (Exam Topic 1)
A security engineer needs to configure monitoring and auditing for AWS Lambda.
Which combination of actions using AWS services should the security engineer take to accomplish this goal? (Select TWO.)

Correct Answer:AB

Question 135

- (Exam Topic 1)
A company has a serverless application for internal users deployed on AWS. The application uses AWS Lambda for the front end and for business logic. The Lambda function accesses an Amazon RDS database inside a VPC The company uses AWS Systems Manager Parameter Store for storing database credentials. A recent security review highlighted the following issues
SCS-C01 dumps exhibit The Lambda function has internet access.
SCS-C01 dumps exhibit The relational database is publicly accessible.
SCS-C01 dumps exhibit The database credentials are not stored in an encrypted state.
Which combination of steps should the company take to resolve these security issues? (Select THREE)

Correct Answer:ABE