Which tasks are customer responsibilities, according to the AWS shared responsibility model?
(Choose two.)
Configure the AWS provided security group firewall.
Classify company assets in the AWS Cloud.
Determine which Availability Zones to use for Amazon S3 buckets.
Patch or upgrade Amazon DynamoDB.
Select Amazon EC2 instances to run AWS Lambda on.
Explanations:
Configuring the AWS provided security group firewall is the customer’s responsibility. Customers need to set rules for inbound and outbound traffic to their resources to ensure proper security.
Classifying company assets in the AWS Cloud is the customer’s responsibility. Customers must determine how to classify their data and resources based on sensitivity and compliance requirements.
Determining which Availability Zones to use for Amazon S3 buckets is managed by AWS. Customers choose their storage class and configure bucket settings, but AWS manages the underlying infrastructure.
Patching or upgrading Amazon DynamoDB is not the customer’s responsibility. AWS fully manages DynamoDB as a service, including updates and maintenance. Customers only configure their tables and indexes.
Selecting Amazon EC2 instances to run AWS Lambda on is incorrect because AWS Lambda is a serverless compute service that abstracts the underlying infrastructure, so customers do not choose EC2 instances for Lambda functions.