Free Amazon AWS-DEA-C01 Exam Questions

Question 1

A data engineer must orchestrate a data pipeline that consists of one AWS Lambda function and one AWS Glue job. The solution must integrate with AWS services. Which solution will meet these requirements with the LEAST management overhead?

A : Use an AWS Step Functions workflow that includes a state machine. Configure the state machine to run the Lambda function and then the AWS Glue job.

B : Use an Apache Airflow workflow that is deployed on an Amazon EC2 instance. Define a directed acyclic graph (DAG) in which the first task is to call the Lambda function and the second task is to call the AWS Glue job.

C : Use an AWS Glue workflow to run the Lambda function and then the AWS Glue job.

D : Use an Apache Airflow workflow that is deployed on Amazon Elastic Kubernetes Service (Amazon EKS). Define a directed acyclic graph (DAG) in which the first task is to call the Lambda function and the second task is to call the AWS Glue job.

Answer: A

Question 2

A data engineer needs to build an enterprise data catalog based on the company's Amazon S3 buckets andAmazon RDS databases. The data catalog must include storage format metadata for the data in the catalog.Which solution will meet these requirements with the LEAST effort?

A : Use an AWS Glue crawler to scan the S3 buckets and RDS databases and build a data catalog. Use data stewards to inspect the data and update the data catalog with the data format.

B : Use an AWS Glue crawler to build a data catalog. Use AWS Glue crawler classifiers to recognize the format of data and store the format in the catalog.

C : Use Amazon Macie to build a data catalog and to identify sensitive data elements. Collect the data format information from Macie.

D : Use scripts to scan data elements and to assign data classifications based on the format of the data.

Answer: B

Question 3

A company wants to migrate an application and an on-premises Apache Kafka server to AWS. Theapplication processes incremental updates that an on-premises Oracle database sends to the Kafka server. Thecompany wants to use the replatform migration strategy instead of the refactor strategy.Which solution will meet these requirements with the LEAST management overhead?

A : Amazon Kinesis Data Streams

B : Amazon Managed Streaming for Apache Kafka (Amazon MSK) provisioned cluster

C : Amazon Data Firehose

D : Amazon Managed Streaming for Apache Kafka (Amazon MSK) Serverless

Answer: D

Question 4

A data engineer needs to reformat newly acquired .csv data in an S3 bucket for more efficient analytics. The data includes timestamps, and older data is removed daily. What is the most cost-effective AWS solution to transform and optimize this data for query performance?

A : Set up a daily Lambda function to convert and partition the .csv data into Parquet format within S3.

B : Use AWS Glue to convert the .csv data to Apache Parquet and partition it by timestamp.

C : Configure an EMR Spark job to transform the .csv files into Parquet, partitioned by the creation timestamp.

D : Run an Athena CTAS query to convert the data to Parquet format with Snappy compression, partitioned by timestamp.

Answer: D

Question 5

A Cloud Data Engineering Team is configuring access control for their company's new multi-account AWS environment. They have a centralized security account and require the ability to allow audit teams to access AWS resources across all accounts for monitoring and compliance purposes. The data engineering team needs to establish a mechanism to grant audit team members from the security account least-privilege access to the necessary resources without creating individual IAM users in each account.

Which of the following steps should the data engineering team implement to set up IAM roles effectively for this requirement? (Select TWO)

A : Enable AWS Organizations and use Service Control Policies (SCPs) to grant the audit team access to the necessary resources across all accounts within the organization.

B : Set up AWS Resource Access Manager (RAM) to share resources with the audit team members from the security account, permitting cross-account resource access without IAM roles.

C : Create cross-account IAM roles in each account with permissions policies granting the necessary access, and establish trust relationships to allow the audit team members from the security account to assume these roles.

D : Provision a dedicated IAM user for each audit team member in the security account and assign inline policies to each user that grant permissions to access resources in other accounts.

E : Implement a single IAM role in the security account with permission to assume other IAM roles in the member accounts, allowing the audit team members to switch roles as needed.

Answer: C,E