An organizational must establish the ability to delete an AWS KMS Customer Master Key (CMK) within a 24-hour timeframe to keep it from being used for encrypt or decrypt operations. Which of the following actions will address this requirement?
A) Manually rotate a key within KMS to create a new CMK immediately.
B) Use the KMS import key functionality to execute a delete key operation.
C) Use the schedule key deletion function within KMS to specify the minimum wait period for deletion.
D) Change the KMS CMK alias to immediately prevent any services from using the CMK.
Correct Answer:
Verified
Q229: A company needs to retain log data
Q230: A company uses an Amazon S3 bucket
Q231: Developers in an organization have moved from
Q232: A company manages multiple AWS accounts using
Q233: A company's security information events management (SIEM)
Q235: A company uses HTTP Live Streaming (HLS)
Q236: A company plans to use custom AMIs
Q237: Two Amazon EC2 instances in different subnets
Q238: A security engineer noticed an anomaly within
Q239: A company's data lake uses Amazon S3
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents