Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

🚀 25% OFF All Practice Exams, Video Courses, & eBooks – Cyber Sale Extension!

Find answers, ask questions, and connect with our
community around the world.

  • Kenneth-Samonte-Tutorials-Dojo

    Member
    August 14, 2022 at 8:04 pm

    Hi ibiarea0,

    Thanks for the feedback.

    The answer indicated that Macie should be used to detect PII however from my understanding, Macie only works on data stored in S3. Is this right?

    > Yes, you are correct. Amazon Macie scans data/documents/texts on Amazon S3 to detect any PII information.

    There does seem to be a pattern where data is extracted out of RDS and into S3, but I suspect this is outside of the scope of the question?

    > Yes, this is not in scope for the answer, because there is no native service to do this yet on AWS.

    This question highlights Amazon Macie in combination with RDS backups that send to an S3 bucket in another region and require a specific RTO and RPO to another region.

    Amazon Macie reads the RDS data on the S3 bucket to scan for PII information. But it can’t read actual snapshots of RDS databases.

    However, Macie can read (non-binary) plain text files and gzip format files. For example, if you save database dumps like .sql or .sql.gz files which are just plain text files on Amazon S3, then Macie can scan these files for PII data.

    Hope this helps.

    Let us know if you need further assistance. The Tutorials Dojo team is dedicated to helping you pass your AWS exam!

    Regards,

    Kenneth Samonte @ Tutorials Dojo

Skip to content