Which of the following are shared controls that apply to both AWS and the customer, according to the AWS shared responsibility model?

Explanations:

Resource configuration management is a shared responsibility because while AWS provides the tools and services, customers are responsible for configuring and managing the resources they provision in the cloud. This includes setting security policies, access controls, and resource settings.

Network data integrity primarily falls under AWS’s responsibility as it involves the underlying infrastructure and network security protocols. Customers are responsible for ensuring their data is secure while in transit, but the integrity of the network itself is managed by AWS.

Employee awareness and training is a shared responsibility, as AWS provides resources and best practices for security, but it is the customer’s responsibility to train their staff on these practices and ensure that they follow them. This includes educating employees on security protocols and incident response.

Physical and environmental security is primarily AWS’s responsibility, as it pertains to the security of the data centers, including access control, environmental controls, and physical protection of hardware. Customers do not manage these aspects.

Replacement and disposal of disk drives is also primarily the responsibility of AWS, as they manage the physical hardware and its lifecycle. Customers are responsible for data management on these drives but not for the physical disposal or replacement of hardware.