Amazon AWS

AWS Certified Data Engineer – Associate

DEA-C01

The AWS Certified Data Engineer – Associate (DEA-C01) exam validates your skills in data engineering on AWS. It is suitable for those who want to demonstrate their ability to design and implement data solutions.

498 questions 0 views Free

Start Mock Test Timed · Full-length · Scored

Q201

Which service can help manage access permissions across multiple AWS accounts?

A AWS Organizations
B IAM Roles
C AWS Config
D CloudTrail

Explanation AWS Organizations allows for centralized management of multiple accounts and their policies, whereas the others do not focus on account access management.

Q202

Which AWS service is ideal for long-term storage of data to reduce costs?

A Amazon S3 Glacier
B Amazon EC2
C AWS Lambda
D Amazon RDS

Explanation S3 Glacier is specifically designed for long-term storage, while EC2 and RDS focus on compute and database management, respectively.

Q203

A company needs to process streaming data in real-time from multiple sources. Which service should they use?

A AWS Glue
B Amazon Kinesis
C AWS Batch
D SQS

Explanation Amazon Kinesis is purpose-built for processing real-time streaming data, unlike Glue, Batch, and SQS which serve different functions.

Q204

You are configuring AWS IAM and need to enable users to access an S3 bucket without allowing them to delete objects. How would you achieve this?

A Attach a policy allowing 's3:DeleteObject' action
B Grant 's3:GetObject' and 's3:PutObject' actions
C Use a bucket policy to deny delete
D Create a role without S3 permissions

Explanation A bucket policy can specifically deny delete permissions while allowing others, whereas options A, B, or D are inadequate for the requirement.

Q205

Which service allows you to manage and provision AWS resources using code?

A AWS CloudFormation
B AWS Lambda
C AWS Systems Manager
D AWS CodeDeploy

Explanation AWS CloudFormation provides infrastructure as code capabilities to manage AWS resources, while other options relate to deployments or system management.

Q206

You are configuring a Data Pipeline that pulls data from Amazon S3 and processes it in an EC2 instance. What is the ideal role for the EC2 instance to access S3 data?

A S3 Full Access Role
B Data Pipeline Access Role
C EC2 Instance Role
D AWS Lambda Role

Explanation Assigning an EC2 instance role enables desired permissions for S3 access, while other roles do not directly apply to an EC2 instance.

Q207

What happens when you delete an Amazon RDS instance?

A Data is lost permanently
B Data is stored in S3
C Instance configuration is retained
D It is archived for a month

Explanation Deleting an Amazon RDS instance permanently removes data unless a snapshot is taken prior, while other options misrepresent the deletion process.

Q208

Which service is ideal for real-time data stream processing?

A Amazon Kinesis
B Amazon S3
C Amazon RDS
D Amazon DynamoDB

Explanation Amazon Kinesis is specifically designed for processing real-time data streams; S3 is for static storage, RDS is a relational database, and DynamoDB is a NoSQL database.

Q209

A company needs to deploy a temporary IAM role for developers to complete a project. What features should the role include?

A Multi-Factor Authentication
B Temporary Security Credentials
C Permanent Security Access
D S3 Bucket Policy

Explanation Temporary security credentials are required for limited-time access; MFA enhances security but isn’t essential, permanent access is not temporary, and S3 bucket policies relate to storage.

Q210

What happens when an EBS volume is detached from an instance?

A Data is lost permanently
B Data remains intact until deleted
C Volume auto-deletes immediately
D Instance crashes due to loss

Explanation Detached EBS volumes retain their data until manually deleted; data loss isn’t automatic, volumes don’t delete themselves, and instance stability isn’t necessarily affected.