🔥 3-day streak
AWS Certified Security - Specialty106 / 184
Question 106 of 184
A security engineer is designing data protection for a new financial reporting application. Sensitive report files are uploaded by clients over the public internet to an Application Load Balancer, then processed by EC2 instances and stored in an Amazon S3 bucket and an Amazon RDS for PostgreSQL database. Compliance requires that data be protected both in transit and at rest, and that the organization retain full control over the cryptographic material used for encryption at rest. Which combination of controls satisfies these requirements with the least operational effort?
Reviewed for accuracy · Report an issueNext question