anki-2-28-39

Questions and Answers

What does Amazon Redshift’s Concurrency Scaling feature primarily address?

Terminating long queries after two hours

Prioritizing short queries over long-running ones

Improving cost savings through node expansion

Handling an increase in concurrent queries efficiently (correct)

Which best describes a benefit of configuring a separate WLM queue for long-running queries?

It automatically optimizes query performance

It prevents long-running queries from blocking others (correct)

It eliminates the need for concurrency scaling

It guarantees all queries run simultaneously

What is the primary advantage of activating Concurrency Scaling?

It adds temporary cluster capacity during peak demand (correct)

It eliminates the cost of additional nodes

It minimizes the execution time of long queries

It significantly shortens query execution limits

Why might simply adding more nodes to a Redshift cluster be less effective?

It does not address query optimization issues

What is the consequence of using Short Query Acceleration (SQA) in Redshift?

It does not improve the execution time of long-running queries

What aspect of workload management (WLM) does Amazon Redshift utilize to prioritize queries?

Through user group or matching query group labels

What option should not be considered for handling long-running queries effectively?

Terminating queries after they exceed two hours

How does Amazon Redshift handle costs associated with concurrency-scaling clusters?

Costs are only incurred when clusters are active

What is the primary method to access nested data in JSON columns in Amazon Redshift?

Utilizing dot and bracket notation

Which method is least efficient for querying large datasets in Amazon Redshift?

Utilizing SQL aggregate functions for calculations

Why are string functions like SUBSTRING and CHAR_LENGTH not ideal for querying large datasets?

They may not optimize resource usage effectively.

What is a disadvantage of using SQL pattern matching operators like SIMILAR TO in Amazon Redshift?

They can be computationally intensive and slow.

How do dot and bracket notation improve the querying of nested JSON data?

They provide a quick way to retrieve necessary nested fields without overhead.

Which operation is NOT typically suited for querying semi-structured or nested datasets in Amazon Redshift?

Implementing SQL aggregate functions

Given the characteristics of efficient querying in Amazon Redshift, which approach would you prioritize?

Dot and bracket notation for nested JSON fields

Which of the following is NOT a suitable method for querying large datasets with nested structures in Amazon Redshift?

Using aggregation functions like COUNT and SUM

What is the main advantage of using the COPY command over the INSERT command in Amazon Redshift?

The COPY command operates in parallel across cluster nodes.

What is a characteristic of temporary tables in Amazon Redshift?

Temporary tables can improve ETL operation performance.

Which command is least appropriate for loading data directly into an Amazon Redshift cluster?

S3DistCp command.

Which action is NOT performed by the COPY command during the data loading process?

Creating permanent tables for data storage.

What is a key feature of temporary tables when compared to permanent tables in Amazon Redshift?

Data changes in temporary tables do not trigger automatic backups.

What limitation is associated with using Redshift Spectrum when loading data into Redshift?

It cannot directly improve loading efficiency.

Which statement accurately describes the effect of compression settings for temporary tables?

Temporary tables can be created without specifying compression settings.

How does the lifetime of temporary tables in Amazon Redshift differ from that of permanent tables?

Temporary tables exist only for the duration of the SQL session.

What is a key feature of AWS Glue that enhances its ETL capabilities?

Automatic schema discovery and mapping

How does AWS Glue optimize the ETL process?

Through server-side filtering with catalog partition predicates

Which of the following statements is incorrect regarding pushdown predicates in AWS Glue?

They lead to lower initial data loads compared to catalog partition predicates.

What advantage does server-side filtering have over client-side filtering when using AWS Glue?

Lower initial data loading and processing costs

Which practice is likely to lead to inefficiency in AWS Glue ETL processes?

Utilizing pushdown predicates instead of catalog partition predicates

Which option best describes the role of AWS Glue's data catalog in ETL operations?

It facilitates the mapping of disparate data schemas.

Why is transforming DynamicFrames into Spark SQL DataFrames not an optimal approach for data reading?

It focuses primarily on the writing process.

What underlying principle does AWS Glue utilize for efficient ETL job execution?

Reading and filtering data through the AWS Glue Data Catalog partition indexes.

What is the primary purpose of the EXECUTE permission in Amazon Redshift regarding stored procedures?

It allows a user to run the stored procedure.

Which privilege must be granted to allow a user to specifically execute a stored procedure in Amazon Redshift?

EXECUTE privilege on the procedure.

Which statement correctly explains the role of USAGE permission in the context of stored procedures?

It allows access to create and manage procedures within a schema.

Which of the following scenarios accurately describes granting the REFERENCES privilege?

It permits the user to call the stored procedure in SQL statements.

How does granting INSERT, UPDATE, and DELETE privileges affect access to stored procedures?

It provides permission to perform data manipulation within underlying tables, not execution of procedures.

Which combination of permissions might be necessary for a data analyst to fully utilize stored procedures?

EXECUTE on procedure and USAGE on schema.

Under what condition would granting the USAGE privilege alone not suffice for executing a stored procedure?

When the user does not have EXECUTE permission on the procedure.

What implication does the ALTER permission have on a stored procedure in Amazon Redshift?

It permits the modification of the stored procedure’s definition after creation.

What is the primary function of the user activity log in Amazon Redshift?

To log every query prior to execution for troubleshooting.

How can database permissions affect the retrieval of log file information in Amazon Redshift?

Only S3 permissions are needed to access connection and user logs.

What enhancement does integrating AWS CloudTrail with Amazon Redshift provide?

It creates a comprehensive audit trail of API interactions and actions in Redshift.

What advantage does Amazon Redshift's built-in audit logging feature offer?

Facilitates retrieval of detailed database transaction information.

Which of the following is NOT a type of log file created by Amazon Redshift?

API log

What does the combination of built-in audit logging and CloudTrail integration accomplish?

Ensures compliance and enhances monitoring capabilities.

Which option provides a significant benefit for monitoring Redshift activity?

Parsing Amazon CloudWatch logs using Amazon Lambda.

What role does Amazon S3 play in the context of Amazon Redshift logging?

It offers storage for log files ensuring easy access and security.

What is the main limitation of using AWS Lambda with Amazon OpenSearch Service for log parsing?

It requires a significant amount of custom development and maintenance.

Why is the built-in Audit Logging feature preferred over Amazon CloudWatch Logs for monitoring Redshift user activities?

Audit Logging captures all SQL query executions and user activities.

What is a fundamental limitation of using AWS Config for monitoring Amazon Redshift's logging features?

It focuses on AWS resource configurations rather than transactional logs.

Which approach does not adequately fulfill the compliance auditing needs for Amazon Redshift systems?

Integrating CloudWatch Logs for SQL query alerts.

What is a significant drawback of focusing only on SQL query logs for Amazon Redshift monitoring?

It fails to provide insights into user activities and compliance requirements.

What is the primary reason for favoring Amazon S3 over DynamoDB for long-term data storage?

Amazon S3 is more cost-effective for archiving data.

Why is it incorrect to use the Standard-Infrequent Access table class for data expected to expire in 60 days?

DynamoDB incurs costs for both storage and capacity based on data retention period.

What is a major disadvantage of storing data in S3 Glacier Deep Archive?

Restoring Glacier objects requires additional operational overhead.

What makes using Amazon Athena more suitable for querying data in the S3 data lake than Amazon EMR?

Athena is designed for ad-hoc querying without needing a server.

What feature of DynamoDB helps manage data retention effectively?

Time to Live (TTL) enables automatic data deletion after a set period.

What is the purpose of setting a Time to Live (TTL) in Amazon DynamoDB?

To define a timestamp after which items are automatically deleted.

How can AWS Glue enhance the ETL process?

By generating reusable and customizable ETL code.

What is the primary role of Amazon S3 Lifecycle policies?

To transition data between different S3 storage classes or delete old data.

Why would archiving data in Amazon S3 be preferred over Redshift for older user activity data?

Because S3 provides unlimited storage capacity and lower costs for infrequent access.

In what way does Amazon DynamoDB TTL contribute to cost management?

By automatically deleting items, thereby minimizing storage costs.

Which statement about AWS Glue's capabilities is correct?

AWS Glue allows for the scheduling of ETL jobs in a managed environment.

What is a misconception about using Amazon Redshift for storing archival data?

Redshift can efficiently manage huge datasets over long retention periods.

Which is a key feature of Amazon S3 regarding data management?

It allows for finely-tuned access controls and data organization.

What is the most efficient method for transferring data from an external cloud data warehouse to Amazon Redshift?

Utilizing AWS Glue Studio

Which statement regarding data transfer methods from an external cloud data warehouse is incorrect?

Amazon Athena can effectively transfer data from an external cloud data warehouse.

What is a significant drawback of exporting data from an external cloud data warehouse into Amazon S3 as flat delimited text files?

It may involve substantial manual effort and be less efficient.

Which of the following processes would be recommended for handling larger datasets during transfer to Amazon Redshift?

Employing AWS Schema Conversion Tool (SCT) for automation.

Why is the use of AWS Glue Studio recommended over manual methods for transferring data to Amazon Redshift?

It automates the data transfer process and supports larger volumes.

What is the initial step required for migrating patient health records to Amazon Redshift using AWS SCT?

Ensure compatibility of the schema and DDL scripts from the external cloud data warehouse.

Which function does AWS Glue Studio primarily serve in the context of data migration to Amazon Redshift?

Create, run, and monitor ETL jobs for data migration.

What incorrect assumption might users make regarding Amazon Athena's capabilities in the context of schema migration?

Amazon Athena can manage data migration across different database systems.

In the migration process, what role does the AWS Schema Conversion Tool (AWS SCT) play?

It automatically converts the source schema and majority of custom code for compatibility.

What is the primary advantage of using automated ETL processes in AWS Glue Studio for data migration?

Minimization of manual effort required to handle large datasets.

Which task is NOT associated with the AWS Schema Conversion Tool in the migration process?

Extracting data from the external cloud data warehouse.

How does AWS Glue Studio facilitate the data transfer process after schema conversion?

By automating the ETL process to extract, transform, and load data.

What is a key characteristic that distinguishes Amazon Athena from AWS SCT in the context of database schema migration?

AWS SCT enables schema conversion, while Amazon Athena provides query capabilities.

Which format is the most efficient for unloading data from Amazon Redshift to Amazon S3?

Parquet

What is the primary purpose of the UNLOAD command in Amazon Redshift?

To export query results to S3

Why might a company choose to use the UNLOAD command instead of keeping data in Redshift?

To save on storage costs by exporting infrequently accessed data

Which statement correctly describes Redshift Spectrum?

It enables querying of data stored in S3 without loading into Redshift

Which approach is least suitable for managing infrequently accessed data within Amazon Redshift?

Storing the infrequently accessed data in Redshift

What is a significant benefit of storing data in Parquet format on S3 compared to text formats?

Parquet is up to 2x faster to unload and requires 6x less storage

What is a major consideration when deciding to export data from Redshift to S3?

Regularly accessed data should remain in Redshift for performance

How does the COPY command differ from the UNLOAD command in Amazon Redshift?

COPY loads data from an S3 bucket into Redshift, whereas UNLOAD exports data from Redshift to S3

What are the primary advantages of using AWS KMS for encryption in Amazon S3?

It automates data encryption and decryption as it interacts with S3.

Which option accurately describes the implications of server-side encryption with AWS KMS (SSE-KMS)?

AWS manages the encryption process and handles cryptographic key management.

In what way does AWS Glue DataBrew enhance data handling, particularly concerning PII?

It can automatically identify and mask PII in datasets.

What is a crucial feature of AWS Glue DataBrew regarding compliance?

The tool ensures that PII is obscured or removed before use in ML models.

Why is using Amazon EMR for PII masking less cost-effective compared to other methods?

EMR is tailored for extensive big data processing and analytics.

What limitation is associated with using Amazon OpenSearch Service for data delivery to ML models?

The associated costs are elevated due to advanced analytics capabilities.

Which of the following methods is deemed inappropriate for the PII masking requirement for machine learning models?

Using Amazon OpenSearch Service without KMS encryption.

Which statement best summarizes the role of AWS KMS in managing cryptographic keys?

It provides centralized management of encryption keys across AWS services.

Study Notes

Amazon Redshift Concurrency Scaling

• Concurrency Scaling feature automatically adds cluster capacity to handle increased concurrent queries.
• Designed to support thousands of concurrent users while maintaining fast query performance.
• Enables processing of both read and write queries seamlessly, ensuring users see current data.

Workload Management (WLM)

• WLM enables flexible management of priorities within workloads to prevent short queries from being delayed by long-running ones.
• Queries are assigned to queues based on user group or matched query group labels in queue configuration.

Cost-Effectiveness

• Charges for concurrency-scaling clusters apply only for the duration they are actively running queries.
• Enhancing performance by increasing node count is potentially more costly and may not address optimization or management issues.

Long-running Queries

• Configuring a distinct WLM queue for long-running queries prevents them from blocking other queries.
• Terminating long-running queries can free resources but does not solve underlying performance issues or optimization needs.

Common Misconceptions

• Expanding Redshift cluster nodes can improve performance but is not always cost-effective for concurrency issues.
• Activating Short Query Acceleration (SQA) may expedite shorter queries but doesn’t resolve long-running query problems.
• Adjusting WLM settings to terminate long-run queries risks cutting off critical operations without addressing root causes.

Amazon Redshift and JSON Data

• Amazon Redshift enables querying of nested data in JSON columns using dot (.) and bracket ([]) notation.
• Accessing nested fields, such as field1 or field2, can be done efficiently with data.field1 or data['field1'] syntax.
• This method minimizes operational overhead, allowing for direct access to required data without processing the entire JSON object.

Efficient Querying Techniques

• Direct querying of JSON data using dot and bracket notation reduces computational resource requirements.
• String functions (e.g., SUBSTRING, CHAR_LENGTH) are not suited for efficient querying of large datasets; they focus on specific data manipulations.
• SQL pattern matching operators (LIKE, SIMILAR TO) are primarily for finding patterns in tabular data and are not ideal for nested datasets.
• SQL aggregate functions (COUNT, SUM, AVG, MIN, MAX) are used for calculations on sets of values but do not efficiently query large nested datasets.

Incorrect Query Methods

• Using string functions and pattern matching can lead to higher computational costs and are not optimized for large-volume JSON data queries.
• Aggregate functions serve data analysis roles, returning single values rather than aiding in efficient querying of complex data structures.

Loading Data in Amazon Redshift

• COPY command is the most efficient method for loading data into tables.
• INSERT commands can be used to add data, but they are less efficient compared to COPY.
• COPY can read from multiple data files or streams simultaneously, enhancing loading speed.
• Amazon Redshift distributes workload across cluster nodes and performs load operations in parallel, including data sorting and distribution across node slices.

Temporary Tables

• Temporary staging tables can be created to hold data for transformation during ETL processes.
• Temporary tables are automatically dropped after the ETL session finishes.
• They can be created using CREATE TEMPORARY TABLE syntax or by executing a SELECT … INTO #TEMP_TABLE query.
• Using the CREATE TEMPORARY TABLE statement allows for specification of DISTRIBUTION KEY, SORT KEY, and compression settings, improving performance.
• Temporary tables function like normal tables, but exist only within a single SQL session.

Performance Benefits of Temporary Tables

• Proper use of temporary tables can significantly enhance performance for certain ETL operations.
• Data changes in temporary tables do not trigger automatic incremental backups to Amazon S3.
• Temporary tables do not require synchronous block mirroring for redundant data storage on different compute nodes.
• Reduced overhead when ingesting data into temporary tables results in faster performance.

Incorrect Options for Data Loading

• Loading data to an external table using Amazon Redshift Spectrum is not efficient for loading data; it only enables querying data directly on Amazon S3.
• Using the UNLOAD command is also incorrect for data loading, as it transfers query results from Redshift to Amazon S3, not the reverse.
• The S3DistCp command is not applicable to Redshift; it is primarily a tool used in Amazon EMR to load data from Amazon S3 to HDFS.

Overview of AWS Glue

• AWS Glue is an ETL (Extract, Transform, Load) service designed to facilitate data movement between diverse data stores.
• Supports various data sources including Amazon S3, Amazon RDS, and Amazon Redshift.

Data Transformation and Management

• AWS Glue allows for easy creation and management of ETL jobs tailored to specific transformation needs.
• Features automatic schema discovery and mapping, enabling seamless integration of data from different sources with varying schemas.

Server-Side Filtering

• Supports server-side filtering with catalog partition predicates, optimizing ETL processes by processing only necessary data.
• Utilizes metadata catalog’s partition indexes for efficient data selection before loading into DynamicFrames.
• Reduces the amount of data that needs to be read and processed, leading to time and cost efficiency.

Comparison of Filtering Methods

• Server-side filtering applies filter predicates against partition metadata stored in the AWS Glue Data Catalog, enhancing data efficiency.
• Client-side filtering is less efficient; data is loaded into memory before any filtering occurs, which increases processing demands.
• Pushdown predicates filter data post-DynamicFrame creation, leading to larger initial data loads compared to catalog partition predicates.

Incorrect Approaches

• Utilizing pushdown predicates directly in DynamicFrame creation is inefficient and results in higher data loads before filtering.
• Transforming DynamicFrames into Spark SQL DataFrames focuses solely on data writing rather than optimizing reading processes.
• Aggregating all input files into a unified in-memory partition increases costs and processing time due to high data volume loading.

Overview of Stored Procedures in Amazon Redshift

• Stored procedures are pre-written SQL code pieces that can be executed multiple times.
• They encapsulate logic for data transformation, validation, and enforcement of business rules.

Permissions Related to Stored Procedures

• EXECUTE Permission:

  • Required for users to run stored procedures.
  • Granted using GRANT EXECUTE.

• Insert, Update, Delete Permissions:

  • Necessary for read/write access to underlying tables or views.

• USAGE Permission:

  • Needed on schemas to create and manage procedures within that schema.

• ALTER Permission:

  • Allows modifications to the procedure definition after it has been created.

• REFERENCES Permission:

  • Enables use of the procedure name in SQL statements like CALL.
  • Not applicable for executing stored procedures.

Granting Permissions to Data Analysts

• Data engineering teams can create roles in Amazon Redshift for permission management.
• Granting EXECUTE permission on the stored procedure to the created role enables data analysts to execute it.
• Adding a data analyst to this role allows them to perform analysis while limiting direct procedure access.

Incorrect Privileges for Execution

• REFERENCES Privilege:

  • Incorrect for execution as it pertains to foreign key constraints.

• USAGE Privilege:

  • While it allows access to objects in a schema, it does not permit execution of stored procedures on its own.

• Insert, Update, Delete Privileges:

  • These permissions allow for data manipulation in tables but do not grant execution rights for stored procedures.

Amazon Redshift Database Auditing

• Database auditing in Amazon Redshift records all connections and user activities for security and troubleshooting.
• Logs are securely stored in Amazon S3 buckets, providing easy access and added security for monitoring.

Types of Log Files

• Connection log: Captures all authentication attempts, user connections, and disconnections.
• User log: Tracks changes made to database user definitions.
• User activity log: Records each query executed in the database, essential for troubleshooting user interactions.

Benefits of Log Files

• Log files offer a simplified way to access and review information compared to querying system tables.
• Database permissions are required to query system tables, but log files can be accessed with Amazon S3 permissions.
• Viewing logs reduces the interaction impact on the database, enhancing performance and security.

AWS CloudTrail Integration

• Integration with AWS CloudTrail provides detailed records of Redshift API calls, including caller identity, time stamps, source IP address, and request parameters.
• This integration offers a comprehensive audit trail of actions within the Redshift cluster, improving security and compliance monitoring.

Monitoring and Compliance

• Built-in audit logging and CloudTrail integration create a robust monitoring solution, ensuring compliance obligations are met.
• This dual approach improves log management and visibility of operations, enabling proactive security measures.

Recommended Solutions for Tracking

• Enable Amazon Redshift’s built-in audit logging feature to capture detailed transactions, SQL query executions, and user activities.
• Integrate this logging feature with AWS CloudTrail for enhanced API call tracking.

Incorrect Options for Monitoring

• Parsing CloudWatch Logs using an AWS Lambda function and storing in Amazon OpenSearch Service is complex and does not capture all necessary audit logs.
• Integrating CloudWatch Logs with Redshift mainly focuses on SQL query logs and anomaly alerts, neglecting complete user activity documentation.
• Utilizing AWS Config for continuous monitoring does not capture detailed transactional audit logs in Redshift and is not suited for assessing production efficiency.

Amazon DynamoDB TTL

• TTL feature allows setting a per-item timestamp for automatic deletion of items.
• Items marked for deletion once the timestamp expires, aiding in cost-effective storage management.
• Setting a TTL of 60 days ensures only the last 60 days of data are stored in the DynamoDB table.

AWS Glue

• A fully managed ETL (Extract, Transform, Load) service to prepare and load data for analytics.
• ETL jobs can be created and executed with a few clicks in the AWS Management Console.
• Generates customizable, reusable, and portable ETL code.
• Jobs can be scheduled on a fully managed Apache Spark environment.

Amazon S3

• Offers extensive storage management features for organizing data with specific access controls.
• Designed for remarkable durability of 99.999999999% (11 nines) and used globally by businesses for various applications.
• S3 Lifecycle policies simplify transitioning data to archival storage or deleting old data versions.

Data Management Strategies

• Implement TTL in DynamoDB for automatic deletion of items older than 60 days.
• Set up AWS Glue to extract recent data from DynamoDB into Amazon QuickSight for visual analysis.
• Configure Amazon S3 Lifecycle policies to move user activity data over 60 days old to S3 Infrequent Access and delete it after 2 years.

Incorrect Options for Data Storage and Management

• Using Amazon Redshift Serverless for archiving older user activity data instead of Amazon S3 is incorrect; Redshift is more suited for OLAP, not data lake purposes.
• Storing all user activity data indefinitely in DynamoDB is not cost-effective due to associated read/write capacity charges; moving older data to S3 is preferred.
• Utilizing Amazon EMR Serverless for querying data in S3, when Amazon Athena is specified, introduces unnecessary complexity.
• Storing data in S3 Glacier Deep Archive offers inexpensive storage but entails increased operational overhead to restore objects for access.

AWS Schema Conversion Tool (AWS SCT)

• AWS SCT automates the migration process to Amazon Redshift by converting source schemas and custom code.
• Converts schemas into formats compatible with Amazon Redshift, including views, stored procedures, and functions.
• Essential first step for migrating patient health records from an external data warehouse: ensure compatibility of schema and DDL scripts.

AWS Glue Studio

• A visual interface used for creating, running, and monitoring ETL (Extract, Transform, Load) jobs.
• Facilitates the transfer of data from external cloud data warehouses to Amazon Redshift after schemas are converted by AWS SCT.
• Automates the ETL process, allowing teams to migrate large datasets with minimal manual effort.

Migration Process

• Start with AWS SCT to adapt source schema and DDL scripts for Amazon Redshift.
• Follow up with AWS Glue Studio to perform data extraction, transformation, and loading into Amazon Redshift.
• Transformation can include data cleaning and data type conversion as needed.

Incorrect Methods for Migration

• Amazon Athena is not designed for schema conversion or data transfer from external data warehouses to Amazon Redshift. It is primarily a query service for analyzing data in Amazon S3.
• Relying on Amazon Athena SQL query editor for data transfer is inefficient; it does not support transfers from external data warehouses.
• Exporting data to Amazon S3 as flat delimited text files and using Redshift SQL query editor with the COPY command is inefficient and labor-intensive compared to using AWS Glue Studio or AWS SCT.

UNLOAD Command in Amazon Redshift

• UNLOAD command exports query results from Amazon Redshift to Amazon S3.
• Ideal for transferring infrequently accessed data, reducing Redshift storage costs.
• Supports multiple export formats: CSV, JSON, and Parquet.

Parquet Format

• Parquet is a columnar storage format optimized for analytics.
• Offers performance benefits: up to 2x faster unloading and consumes up to 6x less S3 storage than text formats.
• Recommended for large volumes of rarely accessed data, ensuring cost efficiency.

Amazon S3 Storage

• Amazon S3 provides cost-effective, scalable storage solutions.
• Storage cost factors include data amount, duration, and chosen storage class.
• Exporting infrequently accessed data from Redshift to S3 optimizes storage expenses.

Incorrect Usage of Commands

• COPY command is not used to export data; it loads data into Redshift from various sources, including Amazon DynamoDB.
• Storing infrequently accessed data in Redshift can be costly; Redshift is optimized for high-performance queries, not long-term storage.
• Redshift Spectrum allows querying data in S3 directly using Redshift SQL without loading it into Redshift.
• Redshift Spectrum does not store its own data; it acts as a querying interface for data already residing in S3.

AWS Key Management Service (AWS KMS)

• AWS KMS is a managed service designed to create and control cryptographic keys for data encryption.
• Keys are utilized across various AWS services to enhance data security.
• Server-Side Encryption with AWS KMS (SSE-KMS) automates the encryption process and key management for users.

AWS S3 and SSE-KMS

• When using Amazon S3 with SSE-KMS, data is automatically encrypted upon storage and decrypted upon access.
• This process incorporates key management, providing an additional security layer.
• SSE-KMS satisfies data encryption requirements.

AWS Glue DataBrew

• AWS Glue DataBrew is a tool for visual data preparation, focused on cleaning and normalizing data.
• Includes data masking capabilities critical for managing Personally Identifiable Information (PII).
• Can identify and mask PII to ensure sensitive data is obscured before use in machine learning or analytics.
• Supports compliance with regulations protecting PII.

Solution Recommendations

• Store data in an Amazon S3 bucket with SSE-KMS enabled for security.
• Implement AWS Glue DataBrew to handle data intake and mask PII before its use in ML models.

Incorrect Options

• Amazon OpenSearch Service with AWS KMS: While it secures data, its high cost and advanced capabilities for search and analytics are unnecessary for simple data delivery to ML models.
• Amazon EMR for PII masking: Although it can manage large datasets, its advanced processing features make it a less cost-effective choice for simple PII masking needs.
• Amazon SageMaker Data Wrangler: Using it to encode PII does not satisfy the requirement of PII non-usage; encoding changes its format without eliminating the sensitive information, risking data privacy compliance.

Description

Explore the capabilities of Amazon Redshift's Concurrency Scaling feature designed to manage increased concurrent queries. This quiz covers how the feature enhances performance for thousands of users by automatically adding cluster capacity, ensuring users always see the most current data. Test your knowledge on this essential aspect of Amazon Redshift.