🔥 3-day streak
AWS Certified Security - Specialty137 / 184
Question 137 of 184

A financial services company must retain regulatory audit files in Amazon S3 so that no user — including the AWS account root user — can delete or overwrite them for a fixed 7-year period. The security team is specifically concerned about ransomware and insider threats that might use valid credentials with administrative privileges. Which approach meets the requirement?

Reviewed for accuracy · Report an issueNext question