Learn how to use Amazon Macie, EventBridge, and SQS to automatically detect personally identifiable information (PII) in AWS S3 buckets and reliably notify your security team for compliance.
Table of Contents
Question
A company stores data in Amazon S3. According to regulations, the data must not contain personally identifiable information (PII). The company recently discovered that S3 buckets have some objects that contain PII. The company needs to automatically detect PII in S3 buckets and to notify the company’s security team.
Which solution will meet these requirements?
A. Use Amazon Macie. Create an Amazon EventBridge rule to filter the SensitiveData event type from Macie findings and to send an Amazon Simple Notification Service (Amazon SNS) notification to the security team.
B. Use Amazon GuardDuty. Create an Amazon EventBridge rule to filter the CRITICAL event type from GuardDuty findings and to send an Amazon Simple Notification Service (Amazon SNS) notification to the security team.
C. Use Amazon Macie. Create an Amazon EventBridge rule to filter the SensitiveData:S3Object/Personal event type from Macie findings and to send an Amazon Simple Queue Service (Amazon SQS) notification to the security team.
D. Use Amazon GuardDuty. Create an Amazon EventBridge rule to filter the CRITICAL event type from GuardDuty findings and to send an Amazon Simple Queue Service (Amazon SQS) notification to the security team.
Answer
C. Use Amazon Macie. Create an Amazon EventBridge rule to filter the SensitiveData:S3Object/Personal event type from Macie findings and to send an Amazon Simple Queue Service (Amazon SQS) notification to the security team.
Explanation
Amazon Macie: Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching techniques to discover and protect sensitive data stored in Amazon S3 buckets. It can automatically detect personally identifiable information (PII) and other types of sensitive data, making it the ideal choice for this use case.
SensitiveData:S3Object/Personal Event Type: Macie generates findings with the “SensitiveData:S3Object/Personal” event type when it detects personally identifiable information (PII) in S3 objects. By filtering for this specific event type, the company can accurately identify objects containing PII.
Amazon EventBridge Rule: Amazon EventBridge is a serverless event bus that routes events from various sources to targets. In this case, an EventBridge rule is created to capture Macie findings related to PII and send them to a target for notification.
Amazon Simple Queue Service (Amazon SQS): Amazon SQS is a fully managed message queuing service that allows decoupling and scalable communication between components. By sending notifications to an SQS queue, the security team can reliably receive and process the notifications asynchronously, ensuring no notifications are lost.
This solution effectively leverages Amazon Macie’s PII detection capabilities, Amazon EventBridge’s event routing, and Amazon SQS’s reliable messaging to meet the company’s requirements for automatically detecting PII in S3 buckets and notifying the security team.
Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Amazon AWS Certified Solutions Architect – Associate SAA-C03 exam and earn Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification.