AWS Shared Security Model | Responsibilities | Exam CLF-C01

AWS Shared Security Model Responsibilities

Question

Which of the following is the responsibility of AWS according to the Shared Security Model? Choose 3 answers from the options given below.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - B, C and D.

The responsibility of AWS includes the following.

1)Securing edge locations.

2)Monitoring physical device security.

3)Implementing service organization Control (SOC) standards.

For more information on AWS Shared Responsibility Model, please refer to the below URL:

https://aws.amazon.com/compliance/shared-responsibility-model/

The Shared Security Model is a security framework that outlines the responsibilities of both AWS and its customers for securing the resources and data stored in the AWS cloud. The framework clarifies which security responsibilities are AWS's and which are the customers' to help ensure that security risks are properly managed.

According to the Shared Security Model, AWS is responsible for ensuring the security of the cloud infrastructure, while the customer is responsible for securing any data and applications they deploy on the cloud. Specifically, AWS is responsible for the following:

  1. Securing the cloud infrastructure: AWS is responsible for securing the hardware, software, and networking infrastructure that supports the cloud. This includes securing edge locations and ensuring the physical security of its data centers, including monitoring access to its facilities.

  2. Complying with security standards: AWS is responsible for implementing security controls that comply with various security standards such as SOC 1, SOC 2, and ISO 27001. These standards help ensure that AWS's infrastructure is secure and can be trusted by its customers.

  3. Managing the AWS environment: AWS is responsible for managing the cloud infrastructure and the services that run on it. This includes managing AWS Identity and Access Management (IAM) which is a service that enables customers to control access to their AWS resources.

Therefore, options B, C, and D are the responsibilities of AWS according to the Shared Security Model. AWS is responsible for securing edge locations, monitoring physical device security, and implementing service organization Control (SOC) standards. Option A, managing AWS Identity and Access Management (IAM), is the responsibility of the customer since IAM enables customers to control access to their AWS resources.