A company stores its sales and marketing data that includes personally identifiable information (PII) in Amazon S3. The company allows its analysts to launch their own Amazon EMR cluster and run analytics reports with the data. To meet compliance requirements, the company must ensure the data is not publicly accessible throughout this process. A data engineer has secured Amazon S3 but must ensure the individual EMR clusters created by the analysts are not exposed to the public internet. Which solution should the data engineer to meet this compliance requirement with LEAST amount of effort?
A) Create an EMR security configuration and ensure the security configuration is associated with the EMR clusters when they are created.
B) Check the security group of the EMR clusters regularly to ensure it does not allow inbound traffic from IPv4 0.0.0.0/0 or IPv6 ::/0.
C) Enable the block public access setting for Amazon EMR at the account level before any EMR cluster is created.
D) Use AWS WAF to block public internet access to the EMR clusters across the board.
Correct Answer:
Verified
Q27: A company is streaming its high-volume billing
Q28: A company's marketing team has asked for
Q29: A company has developed an Apache Hive
Q30: A financial company hosts a data lake
Q31: A company is planning to do a
Q33: A large financial company is running its
Q34: A company that produces network devices has
Q35: A transportation company uses IoT sensors attached
Q36: A company leverages Amazon Athena for ad-hoc
Q37: An insurance company has raw data in
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents