CLF-C02 Domain 2: Security and Compliance

Under the AWS shared responsibility model, which task is the customer's responsibility?

Multiple choice — select one answer

Answer choices

  1. a. Threat detection based on logs and activity
  2. b. Configuring security groups on EC2
  3. c. Hardware security modules you control, without security or identity team coordination per policy.
  4. d. Physical data center security, without security or identity team coordination per policy.

Architectural breakdown & explanation

Customers are responsible for security IN the cloud, including guest OS and firewall configuration.

Correct answer(s): b. Configuring security groups on EC2

Exam domain: Domain 2: Security and Compliance (30% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Cloud Practitioner bank. Run a full timed practice exam with domain-weighted random questions in your browser.