🔥 3-day streak
AWS Certified Machine Learning Engineer - Associate127 / 194
Question 127 of 194
A financial services company runs a real-time SageMaker endpoint that processes sensitive customer transactions. Compliance requires that the AWS KMS key used to encrypt the endpoint's storage volume be automatically rotated every year, and that all key usage be traceable for audits. The security team wants to enable rotation without changing the key ARN referenced in the endpoint configuration. Which approach satisfies these requirements with the least operational overhead?
Reviewed for accuracy · Report an issueNext question