Which actions should the company take to meet these requirements?

By:
In: CLF-C01
Tagged:
With: 1 Comment
A company is building an application on AWS The application needs to comply with credit card regulatory requirements. The company needs proof that the AWS services and deployment are in compliance.

Which actions should the company take to meet these requirements?

(Choose two.)

Use Amazon Inspector to submit the application for certification

Ensure that the application’s underlying hardware components comply with requirements

Use AWS Artifact to access AWS documents about the compliance of the services

Get the compliance of the application certified by a company assessor

Use AWS Security Hub to certify the compliance of the application

Explanations:

Amazon Inspector is used for assessing security vulnerabilities and not for certification or regulatory compliance verification.

AWS customers are not responsible for the compliance of underlying hardware; AWS manages hardware compliance under its shared responsibility model.

AWS Artifact provides access to compliance reports and documentation, helping companies validate that AWS services meet regulatory requirements.

A third-party assessor is often required to certify the application itself to ensure that it complies with credit card regulations.

AWS Security Hub provides security posture management but does not handle certification or proof of compliance for regulatory requirements.

2025-10-17

1 Comment

  1. Patricia
    Author

    From what I’ve seen, the answer is:
    Use AWS Artifact to access AWS documents about the compliance of the services

Leave a Reply

Your email address will not be published. Required fields are marked *

fifteen − 8 =