Profile

Melissa da Cunha

This user account status is Approved

Comments Comments

Don't forget to use AWS CloudTrail for monitoring.

On Applying the principle of least privilege across an environment

Excellent point! VPC peering is quite secure but limited to routing traffic between two peered VPCs. Proxy patterns can implement…

On Choosing between VPC peering, proxy patterns, or a transit gateway connection based on analysis of the network requirements provided

How do you handle alert fatigue with Security Hub in a multi-region setup?

On Automating the application of security controls in multi-account and multi-Region environments (for example, Security Hub, Organizations, AWS Control Tower, Systems Manager)

This was very helpful. Thank you!

On Designing policies to enforce least privilege access

Does the AWS Compute Optimizer consider reserved instances in its recommendations?

On AWS rightsizing visibility tools (for example, AWS Compute Optimizer, Amazon S3 Storage Lens)

Explained things I was stuck on. Thanks!

On Analyzing architectures to identify monitoring requirements and sources of data for security monitoring

Can someone explain the key differences between client-side and server-side encryption in AWS S3?

On Deploying encryption strategies for data at rest and data in transit

I had trouble setting up CloudFront access logs for my distribution. Any pointers?

On Log creation in different AWS services (for example, VPC flow logs, load balancer access logs, CloudFront access logs)

This helped fill in some gaps I had. Thanks a lot!

On Disaster recovery planning

What challenges did you face while preparing for the exam?

On Designing BGP routing with BGP attributes to influence the traffic flows based on the desired traffic patterns (load sharing, active/passive)

load more comments