AWS Security and Compliance Responsibilities

AWS Responsibilities

Question

Security and Compliance is a shared responsibility between AWS and the customer.

Which amongst the below-listed options are AWS responsibilities?(Select TWO.)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E.

Answer: D and E.

Option A is INCORRECT because Amazon Elastic Compute Cloud (Amazon EC2) is categorized as Infrastructure as a Service (IaaS)

Hence this is the customer's responsibility.

Option B is INCORRECT because AWS is responsible for patching and fixing flaws within the infrastructure.

But customers are responsible for patching their guest OS and applications.

Option C is INCORRECT as Security of the data in the cloud is the customer's responsibility.

Option D is CORRECT as security of the cloud is AWS's responsibility.

Option E is CORRECT.

AWS is responsible for patching and fixing flaws within the infrastructure.

Reference:

https://aws.amazon.com/compliance/shared-responsibility-model/

When it comes to security and compliance, AWS and its customers share responsibility. The division of responsibility depends on the AWS service being used. Below is an explanation of AWS's responsibilities:

D. Security of the AWS cloud: AWS is responsible for the security of the cloud infrastructure that includes physical security of data centers, network security, and security of hardware that runs AWS services.

E. Patch management within the AWS infrastructure: AWS is responsible for patching and securing the infrastructure that runs AWS services.

Regarding the other options:

A. Perform all the necessary security configuration and management tasks for Amazon Elastic Compute Cloud (Amazon EC2): This responsibility lies with the customer. The customer is responsible for configuring and securing their own Amazon EC2 instances.

B. Patch management of the guest OS and applications: This responsibility lies with the customer. The customer is responsible for patching and securing their own guest operating systems and applications.

C. Security of the data in the AWS cloud: This responsibility is shared between AWS and the customer. AWS provides tools and services to secure data in the cloud, but the customer is responsible for ensuring their data is appropriately secured and compliant with regulations.

In summary, while AWS is responsible for the security of the cloud infrastructure and patch management within the AWS infrastructure, customers are responsible for securing their own instances, guest operating systems, applications, and data in the cloud.