A company stores data on an Amazon EBS volume attached to an Amazon EC2 instance. The data is asynchronously replicated to an Amazon S3 bucket. Both the EBS volume and the S3 bucket are encrypted with the same AWS KMS Customer Master Key (CMK) . A former employee scheduled a deletion of that CMK before leaving the company. The company's Developer Operations department learns about this only after the CMK has been deleted. Which steps must be taken to address this situation?
A) Copy the data directly from the EBS encrypted volume before the volume is detached from the EC2 instance.
B) Recover the data from the EBS encrypted volume using an earlier version of the KMS backing key.
C) Make a request to AWS Support to recover the S3 encrypted data.
D) Make a request to AWS Support to restore the deleted CMK, and use it to recover the data.
Correct Answer:
Verified
Q205: A company has contracted with a third
Q206: A security engineer is designing a solution
Q207: An application makes calls to AWS services
Q208: A company has two software development teams
Q209: A company uses AWS Organization to manage
Q211: A security engineer is defining the controls
Q212: Amazon CloudWatch Logs agent is successfully delivering
Q213: A Security Administrator is restricting the capabilities
Q214: A company website runs on Amazon EC2
Q215: A company is running an application on
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents