🔥 3-day streak
AWS Certified Security - Specialty136 / 184
Question 136 of 184

A healthcare company must store protected health information (PHI) in an S3 bucket. Their compliance framework requires that all object data be encrypted at rest with two independent layers of encryption applied server-side, and that the encryption be managed through AWS KMS with full CloudTrail auditability of key usage. Which S3 default encryption configuration meets these requirements with the least operational overhead?

Reviewed for accuracy · Report an issueNext question