AWS Certified SysOps Administrator SOA-C01 – Question481 - AWS Certified SysOps Administrator SOA-C01

Your customers are concerned about the security of their sensitive data and their inquiry asks about what happens to old storage devices on AWS. What would be the best answer to this question?

A. AWS uses a 3rd party security organization to destroy data as part of the decommissioning pro-cess.
B. AWS uses the techniques detailed in DoD 5220.22-M to destroy data as part of the decommis-sioning process.
C. AWS reformats the disks and uses them again.
D. AWS uses their own proprietary software to destroy data as part of the decommissioning pro-cess.

Correct Answer: B

Explanation:

Explanation: When a storage device has reached the end of its useful life, AWS procedures include a decommis-sioning process that is designed to prevent customer data from being exposed to unauthorized indi-viduals. AWS uses the techniques detailed in DoD 5220.22-M (“National Industrial Security Program Oper-ating Manual “) or NIST 800-88 (“Guidelines for Media Sanitization”) to destroy data as part of the decommissioning process. All decommissioned magnetic storage devices are degaussed and physically destroyed in accord-ance with industry-standard practices. Reference: https://d0.awsstatic.com/whitepapers/aws-security-whitepaper.pdf