Free Amazon DVA-C02 Exam Questions

Question 1

A development team uses AWS CodeBuild as part of a CI/CD pipeline. The project includes hundreds of unitand integration tests, and total build time continues to increase. The team wants faster feedback and loweroverall testing duration without managing additional infrastructure.Which solution will meet these requirements with the LEAST operational overhead ?

A : Configure multiple CodeBuild projects and manually split tests across them.

B : Configure CodeBuild to split tests across multiple parallel compute environments.

C : Run all tests sequentially in a single CodeBuild environment.

D : Use Amazon EC2 instances with a custom test runner to distribute tests.

Answer: B

Question 2

A developer is updating an Amazon API Gateway REST API to have a mock endpoint. The developer wantsto update the integration request mapping template so the endpoint will respond to mock integration requestswith specific HTTP status codes based on various conditions.

A : { if( $input.params(‘integration’) == " mock " ) " statusCode " : 404 else " statusCode " : 500 end }

B : { if( $input.params( ' scope ' ) == " internal " ) " statusCode " : 200 else " statusCode " : 500 end }

C : { if( $input.path( " integration " ) ) " statusCode " : 200 else " statusCode " :404 end }

D : { if( $context.integration.status ) " statusCode " : 200 else " statusCode " : 500 end }

Answer: D

Question 3

A company has deployed infrastructure on AWS. A development team wants to create an AWS Lambdafunction that will retrieve data from an Amazon Aurora database. The Amazon Aurora database is in a privatesubnet in company ' s VPC. The VPC is named VPC1. The data is relational in nature. The Lambda functionneeds to access the data securely.Which solution will meet these requirements?

A : Create the Lambda function. Configure VPC1 access for the function. Attach a security group namedSG1 to both the Lambda function and the database. Configure the security group inbound and outboundrules to allow TCP traffic on Port 3306.

B : Create and launch a Lambda function in a new public subnet that is in a new VPC named VPC2. Createa peering connection between VPC1 and VPC2.

C : Create the Lambda function. Configure VPC1 access for the function. Assign a security group namedSG1 to the Lambda function. Assign a second security group named SG2 to the database. Add aninbound rule to SG1 to allow TCP traffic from Port 3306.

D : Export the data from the Aurora database to Amazon S3. Create and launch a Lambda function inVPC1. Configure the Lambda function query the data from Amazon S3.

Answer: A

Question 4

A popular mobile app retrieves data from an AWS DynamoDB table that was provisioned with read-capacity units (RCU’s) that are evenly shared across four partitions. One of those partitions is receiving more traffic than the other partitions, causing hot partition issues.

What technology will allow you to reduce the read traffic on your AWS DynamoDB table with minimal effort?

A : ElastiCache

B : DynamoDB DAX

C : More partitions

D : DynamoDB Streams

Answer: B

Question 5

A company has an application that uses an AWS Lambda function to process data. A developer must implement encryption in transit for all sensitive configuration data, such as API keys, that is stored in the application. The developer creates an AWS Key Management Service (AWS KMS) customer managed key.

What should the developer do next to meet the encryption requirement?

A : Create parameters of the String type in AWS Systems Manager Parameter Store. For each parameter, specify the KMS key ID to encrypt the parameter in transit. Reference the GetParameter API call in the Lambda environment variables.

B : Create secrets in AWS Secrets Manager by using the customer managed KMS key. Create a new Lambda function and set up a Lambda layer. Configure the Lambda layer to retrieve the values from Secrets Manager.

C : Create objects in Amazon S3 for each sensitive data field. Specify the customer managed KMS key to encrypt the object. Configure the Lambda function to retrieve the objects from Amazon S3 during data processing.

D : Create encrypted Lambda environment variables. Specify the customer managed KMS key to encrypt the variables. Enable encryption helpers for encryption in transit. Grant permission to the Lambda function's execution role to access the KMS key.

Answer: B