🔥 3-day streak
AWS Certified Data Engineer - Associate83 / 159
Question 83 of 159

A data engineering team ingests customer records into an S3-based data lake. A compliance auditor requires that the data be protected both while moving between the on-premises source and AWS, and while stored in S3, using customer-managed keys where feasible. The team currently uploads files over the public internet using the AWS CLI with default S3 settings. Which combination of actions BEST satisfies both the in-transit and at-rest encryption requirements?

Reviewed for accuracy · Report an issueNext question