🔥 3-day streak
AWS Certified Machine Learning Engineer - Associate25 / 194
Question 25 of 194

A healthcare company runs a SageMaker real-time endpoint that processes protected health information (PHI). A compliance auditor requires that all model prediction logs and captured inference data be encrypted at rest with a customer-managed key, and that any attempt to disable logging or delete the key be centrally recorded for audit. The ML engineer has already enabled SageMaker Data Capture writing to an S3 bucket. Which combination of actions BEST satisfies these requirements with the least custom code?

Reviewed for accuracy · Report an issueNext question