AWS Certified Security - Specialty

509 real-world practice questions with community-voted answers and discussion.

Questions

509

Status

Live now

Vendor

Amazon Web Services

Domains

—

$30one-time

Lifetime access · Updates included

Online practice

Interactive runner with community comments and Practice / Study modes.

PDF to my inbox

Full bank as a searchable PDF, delivered in minutes.

Both (recommended)

Online access plus the PDF for offline study. Same price.

Try the free preview

All 509 questions

Community-voted answers & discussion

PDF for offline study

Free updates for a year

What's inside

Real exam-style questions

Curated from thousands of reports, with correct answers verified by community vote.

Community discussion

Every question has reasoning from practitioners who sat the exam — read why the answer is the answer.

PDF to your inbox

Prefer paper or an iPad? Get a clean, searchable PDF of the full bank as soon as you purchase.

Sample question

One question, free, no sign-up. Click the correct choice.

Topic 1 · Question 1 · Free sample

The Security team believes that a former employee may have gained unauthorized access to AWS resources sometime in the past 3 months by using an identified access key. What approach would enable the Security team to find out what the former employee may have done within AWS?

AUse the AWS CloudTrail console to search for user activity.

BUse the Amazon CloudWatch Logs console to filter CloudTrail data by user.

CUse AWS Config to see what actions were taken by the user.

DUse Amazon Athena to query CloudTrail logs stored in Amazon S3.

Community voted A · 8 votesStart free preview →