Crucial Exams

AWS Certified Data Engineer Associate DEA-C01 Practice Question

An ecommerce company stores hundreds of Parquet datasets in Amazon S3. The analytics team catalogs the data in AWS Glue. They must indicate for each table and column whether the data is public, internal only, or contains customer PII, and they must enforce different Athena permissions based on these classifications. Which solution requires the least ongoing administration?

  • Maintain separate AWS Glue databases for Public, Internal, and PII data and restrict Athena users to the corresponding database.

  • Configure custom classifiers in AWS Glue crawlers to label tables and use Glue column-level IAM policies to restrict Athena access.

  • Create Lake Formation LF-tags for each sensitivity level, attach them to the relevant tables and columns, and grant tag-based permissions to the appropriate IAM principals.

  • Enable Amazon Macie on the S3 buckets and use Macie findings to automatically block unauthorized Athena queries against sensitive data.

AWS Certified Data Engineer Associate DEA-C01
Data Store Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot