A company uses Amazon Macie to scan S3 buckets for sensitive data. They have a bucket containing 50 TB of historical logs that rarely change, and a bucket with 1 TB of active user uploads. To optimize Macie costs, how should the solutions architect configure the scanning?

Answer options:

Use Macie's automated sensitive data discovery on all buckets.

Configure Macie to only scan the 1 TB bucket of active user uploads.

Compress the 50 TB bucket using gzip before scanning.

Move the 50 TB bucket to Glacier before scanning.

How to approach this question

Recognize that Macie pricing is based on data processed. Limit the scope to active data.

Full Answer

B.Configure Macie to only scan the 1 TB bucket of active user uploads.✓ Correct

Amazon Macie pricing is based on the amount of data processed for sensitive data discovery. To optimize costs, you should target your sensitive data discovery jobs only at buckets that contain active, high-risk, or changing data.

Common mistakes

Assuming compression reduces Macie scanning costs (it charges based on uncompressed bytes).

Question 64 All questions

Practice the full AWS SAA-C03 Practice Exam 5

65 questions · hints · full answers · grading

More questions from this exam

Q01A company needs to grant an external auditor read-only access to specific AWS resources. The audi...Easy Q02An application running on EC2 instances needs to access objects in an S3 bucket. The security tea...Medium Q03A company is designing a VPC for a multi-tier web application. They need to block specific malici...Medium Q04A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...Hard Q05A company hosts a web application on an Application Load Balancer (ALB). They are experiencing SQ...Medium

View all 65 questions →