Question: 1/50
A company wants to store long-term backups in Amazon S3. The security team requires that the data cannot be deleted or overwritten for 7 years, even by administrators. Which solution meets these requirements?
Enable S3 Object Lock in compliance mode on the bucket and configure a 7-year retention period
Enable S3 Versioning and configure an S3 Lifecycle rule to transition objects to S3 Glacier Deep Archive
Use an IAM policy that denies s3:DeleteObject for all users, including administrators
Enable default encryption with SSE-KMS and rotate the KMS key annually