🔥 3-day streak
AWS Certified DevOps Engineer - Professional148 / 204
Question 148 of 204

A financial services company uses Amazon Macie to scan S3 buckets for sensitive data. When Macie discovers objects containing personally identifiable information (PII) in buckets that are not approved for PII storage, the security team wants an automated response that blocks further access to the specific offending objects within minutes, records the action for audit, and notifies the security channel — all without disabling access to the entire bucket or blocking legitimate objects. Which approach BEST meets these requirements?

Reviewed for accuracy · Report an issueNext question