Demo Amazon DVA-C02 Exam Questions

Demo practice questions for guest users.

Section: Practice Mode 8 Questions
Demo Practice
Back To Exam
Question 1

Adeveloper has created an AWS Lambda function that is written in Python. The Lambda function
reads data from objects in Amazon S3 and writes data to an Amazon DynamoDB table. The function is
successfully invoked from an S3 event notification when an object is created. However, the function
fails when it attempts to write to the DynamoDB table.
What is the MOST likely cause of this issue?


Correct Answer: C
Explanation:
The most likely cause is that the AWS Lambda function does not have the required IAM permissions to write to the Amazon DynamoDB table. While the function is successfully triggered by the Amazon S3 event notification, which indicates that its basic execution role and S3 permissions are correct, the failure occurs specifically when attempting a DynamoDB write operation. This strongly points to missing or insufficient permissions in the Lambda execution role, such as lacking dynamodb:PutItem, UpdateItem, or Write access on the table. In AWS, Lambda functions must explicitly be granted IAM permissions for every service they interact with, and without proper DynamoDB permissions, write operations will fail even though the function itself runs successfully.
Question 2

Acompany is building a scalable data management solution by using AWS services to improve the
speed and agility of development. The solution will ingest large volumes of data from various sources
and will process this data through multiple business rules and transformations.
The solution requires business rules to run in sequence and to handle reprocessing of data if errors
occur when the business rules run. The company needs the solution to be scalable and to require the
least possible maintenance.
Which AWS service should the company use to manage and automate the orchestration of the data
flows to meet these requirements?


Correct Answer: B
Explanation:
The requirement is to orchestrate a scalable data pipeline where multiple business rules and transformations must run in a specific sequence, with built-in support for error handling and reprocessing when failures occur. AWS Step Functions is designed exactly for this use case because it allows you to build state machines that coordinate multiple AWS services (like Lambda, Glue, or Batch) in a controlled workflow with retries, error handling, and step-by-step execution. It is highly scalable, fully managed, and requires minimal operational maintenance, making it ideal for orchestrating complex data flows.
Question 3

An application is using Amazon Cognito user pools and identity pools for secure access. A developer
wants to integrate the user-specific file upload and download features in the application with
Amazon S3. The developer must ensure that the files are saved and retrieved in a secure manner and
that users can access only their own files. The file sizes range from 3 KB to 300 MB.
Which option will meet these requirements with the HIGHEST level of security?


Correct Answer: D
Explanation:
The most secure and scalable way to ensure users can only access their own files in Amazon S3 when using Amazon Cognito User Pools and Identity Pools is to use IAM policies scoped with Cognito identity-based prefixes (e.g., cognito-identity.amazonaws.com:sub). This allows you to enforce fine-grained access control at the S3 bucket level, ensuring each authenticated user is restricted to their own folder (for example, s3://bucket/${cognito-identity-id}/*). This approach is fully managed, highly secure, and does not require custom application logic or additional services, which makes it the best fit for handling large file uploads (3 KB to 300 MB) efficiently and securely.

Demo Practice Mode

You are viewing only the questions marked as Demo.

BACK TO EXAM