Exam AWS Certified Cloud Practitioner topic 1 question 790 discussion

Customers are responsible for managing the security of their data and applications in the cloud. This includes tasks such as patching and configuring the guest operating system, application software, and the AWS-provided security group firewall12. Service and communications protection or zone security is typically managed by AWS as part of their responsibility to secure the infrastructure and services they provide. So this is not the answer.

La gestión de parches y configuración es responsabilidad del cliente.

Customer Specific – Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services. Examples include: Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments.

Answer B: Service and communications protection or zone security "Customer Specific Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services. Examples include: - Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments." https://aws.amazon.com/compliance/shared-responsibility-model/ I thought it is D at first, but the documentation is clear about it I reckon

Can anybody tell why D is impossible?

Patch and configuration management" falls under the customer's responsibility. This includes tasks such as applying software updates and patches to the operating systems and applications running on AWS, as well as configuring security settings to best protect their resources.

A. Patch and configuration management. Patch and configuration management involve applying necessary software updates, patches, and configurations to secure the customer's applications and operating systems running on AWS. This responsibility includes managing security updates and configurations for the software and applications installed on the AWS infrastructure that the customer has control over.

I think D is correct

Customer Specific – Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services. Examples include: Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments.

The correct answer is: A. Patch and configuration management According to the AWS Shared Responsibility Model, customers are responsible for managing the security "in" the cloud which includes patch and configuration management. This means customers are responsible for patching their guest OS and applications, and for configuring AWS provided security group and network ACLs.

I also think awareness and training is the right answer. D

Customer Specific – Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services. Examples include: Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments. Source: https://aws.amazon.com/compliance/shared-responsibility-model/

https://aws.amazon.com/compliance/shared-responsibility-model/ Customer Specific – Controls which are solely the responsibility of the customer based on the application they are deploying within AWS services. Examples include: Service and Communications Protection or Zone Security which may require a customer to route or zone data within specific security environments.

awareness and training = your responsibility (the customer)

awareness and training = your responsibility (the customer)