SAA-C03 - Design Secure Architectures - Section 1.9
Determine appropriate data security controls including S3 access controls, data classification and lifecycle protection.
Describe S3 Block Public Access settings as an account-level and bucket-level safeguard against accidental public exposure, and explain how Amazon Macie automates data classification to identify sensitive content such as personally identifiable information. Apply backup and retention controls appropriate to a data classification tier, and select lifecycle rules that move objects between storage classes or expire them based on age.
S3 Block Public AccessData classificationAmazon MacieBackup and retention
More in this domain
Back to all Design Secure Architectures objectives, or the SAA-C03 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.