Email Us support@dumpsengine.com
LOG IN SIGN UP 0

Free Amazon SCS-C02 Exam Questions

Absolute Free SCS-C02 Exam Practice for Comprehensive Preparation 

  • Amazon SCS-C02 Exam Questions
  • Provided By: Amazon
  • Exam: AWS Certified Security Specialty
  • Certification: AWS Certified Specialty
  • Total Questions: 569
  • Updated On: Jan 05, 2026
  • Rated: 4.9 |
  • Online Users: 1138
Page No. 1 of 114
   
Add To Cart
  • Question 1

    • A company enforces encryption for all Amazon EBS volumes. Following security incidents, EBS snapshots sometimes need to be shared with a forensics account for analysis. The security team must ensure the volumes remain encrypted as much as possible throughout the process.Which steps are required to share the encrypted snapshots with least privilege? 


      Answer: B
  • Question 2

    • A company uses identity federation to authenticate users into an identity account (987654321987) where the users assume an IAM role named IdentityRole. The users then assume an IAM role named JobFunctionRole in the target IAM account (123456789123) to perform their job functions. A user is unable to assume the IAM role in the target account. The policy attached to the role in the identity account is:

      What should be done to enable the user to assume the appropriate role in the target account? 


      Answer: B
  • Question 3

    • An administrative user accidentally exposed an access key ID and secret access key to a public support forum. The user notified the security team about the incident after removing the exposed credentials from the forum.Which initial steps should a security engineer take to mitigate the exposure without interrupting operations? (Select TWO.) 


      Answer: C,E
  • Question 4

    • A company has recently recovered from a security incident that required the restoration of Amazon EC2 instances from snapshots. The company uses an AWS Key Management Service (AWS KMS) customer managed key to encrypt all Amazon Elastic Block Store (Amazon EBS) snapshots. The company performs a gap analysis of its disaster recovery procedures and backup strategies. A security engineer needs to implement a solution so that the company can recover the EC2 instances if the AWS account is compromised and the EBS snapshots are deleted. Which solution will meet this requirement?  


      Answer: C
  • Question 5

    • An online gaming company has a network of Amazon EC2 instances that are frequently targeted by rogue bots. The security team needs to implement an automated system to block traffic from identified malicious sources. The system needs to respond in near real-time and the security team decided to use AWS Step Functions to orchestrate this solution.Which solution should the security engineer implement to meet these requirements? 


      Answer: C
PAGE: 1 - 114
   
Add To Cart

© Copyrights DumpsEngine 2026. All Rights Reserved

We use cookies to ensure your best experience. So we hope you are happy to receive all cookies on the DumpsEngine.