Q11 — AWS SCS-C02 Ch.1

Question 11 of 100 | ← Chapter 1

A company's data scientists want to create artificial intelligence and machine learning (AI/ML) training models by using Amazon SageMaker. The training models will use large datasets in an Amazon S3 bucket. The datasets contain sensitive information. On average, the data scientists need 30 days to train models. The S3 bucket has been secured appropriately. The company's data retention policy states that all data that is older than 45 days must be removed from the S3 bucket. Which action should a security engineer take to enforce this data retention policy?

Correct Answer: A. Configure an S3 Lifecycle rule on the S3 bucket to delete objects after 45 days.  

Explanation

Amazon S3 Lifecycle规则允许为存储桶中的对象定义自动化的过渡和过期操作。根据AWS文档,生命周期规则可直接配置为在指定天数后删除对象,无需额外脚本或计算资源。选项A直接使用S3原生功能,确保数据在45天后精确删除,符合数据保留策略。选项B和C依赖Lambda函数,存在执行延迟和运维复杂度。选项D仅涉及存储类转换,而非删除操作。正确答案为A。