Amazon

DEA-C01 Exam
AWS Certified Data Engineer -
Associate (DEA-C01)

Questions & Answers

Get Full File:

https://www.dumpsvibe.com/amazon/data-engineer-associate-dumps.html
Questions & Answers PDF Page 2

Version: 5.0

Question: 1

A data engineer is configuring an AWS Glue job to read data from an Amazon S3 bucket. The data
engineer has set up the necessary AWS Glue connection details and an associated IAM role.
However, when the data engineer attempts to run the AWS Glue job, the data engineer receives an
error message that indicates that there are problems with the Amazon S3 VPC gateway endpoint.
The data engineer must resolve the error and connect the AWS Glue job to the S3 bucket.
Which solution will meet this requirement?
A. Update the AWS Glue security group to allow inbound traffic from the Amazon S3 VPC gateway
endpoint.
B. Configure an S3 bucket policy to explicitly grant the AWS Glue job permissions to access the S3
bucket.
C. Review the AWS Glue job code to ensure that the AWS Glue connection details include a fully
qualified domain name.
D. Verify that the VPC's route table includes inbound and outbound routes for the Amazon S3 VPC
gateway endpoint.

Answer: D
Explanation:
The error message indicates that the AWS Glue job cannot access the Amazon S3 bucket through the
VPC endpoint. This could be because the VPC’s route table does not have the necessary routes to
direct the traffic to the endpoint. To fix this, the data engineer must verify that the route table has an
entry for the Amazon S3 service prefix (com.amazonaws.region.s3) with the target as the VPC
endpoint ID. This will allow the AWS Glue job to use the VPC endpoint to access the S3 bucket
without going through the internet or a NAT gateway. For more information, see Gateway endpoints.
Reference: Troubleshoot the AWS Glue error “VPC S3 endpoint validation failed” Amazon VPC
endpoints for Amazon S3 [AWS Certified Data Engineer - Associate DEA-C01 Complete Study Guide]

Question: 2

A retail company has a customer data hub in an Amazon S3 bucket. Employees from many countries
use the data hub to support company-wide analytics. A governance team must ensure that the
company's data analysts can access data only for customers who are within the same country as the
analysts.

www.dumpsvibe.com
Questions & Answers PDF Page 3

Which solution will meet these requirements with the LEAST operational effort?
A. Create a separate table for each country's customer data. Provide access to each analyst based on
the country that the analyst serves.
B. Register the S3 bucket as a data lake location in AWS Lake Formation. Use the Lake Formation row-
level security features to enforce the company's access policies.
C. Move the data to AWS Regions that are close to the countries where the customers are. Provide
access to each analyst based on the country that the analyst serves.
D. Load the data into Amazon Redshift. Create a view for each country. Create separate 1AM roles for
each country to provide access to data from each country. Assign the appropriate roles to the
analysts.

Answer: B
Explanation:
AWS Lake Formation is a service that allows you to easily set up, secure, and manage data lakes. One
of the features of Lake Formation is row-level security, which enables you to control access to specific
rows or columns of data based on the identity or role of the user. This feature is useful for scenarios
where you need to restrict access to sensitive or regulated data, such as customer data from different
countries. By registering the S3 bucket as a data lake location in Lake Formation, you can use the Lake
Formation console or APIs to define and apply row-level security policies to the data in the bucket.
You can also use Lake Formation blueprints to automate the ingestion and transformation of data
from various sources into the data lake. This solution requires the least operational effort compared
to the other options, as it does not involve creating or moving data, or managing multiple tables,
views, or roles. Reference:
AWS Lake Formation
Row-Level Security
AWS Certified Data Engineer - Associate DEA-C01 Complete Study Guide, Chapter 4: Data Lakes and
Data Warehouses, Section 4.2: AWS Lake Formation

Question: 3
A media company wants to improve a system that recommends media content to customer based on
user behavior and preferences. To improve the recommendation system, the company needs to
incorporate insights from third-party datasets into the company's existing analytics platform.
The company wants to minimize the effort and time required to incorporate third-party datasets.
Which solution will meet these requirements with the LEAST operational overhead?
A. Use API calls to access and integrate third-party datasets from AWS Data Exchange.
B. Use API calls to access and integrate third-party datasets from AWS
C. Use Amazon Kinesis Data Streams to access and integrate third-party datasets from AWS
CodeCommit repositories.
D. Use Amazon Kinesis Data Streams to access and integrate third-party datasets from Amazon
Elastic Container Registry (Amazon ECR).

Answer: A

www.dumpsvibe.com
Questions & Answers PDF Page 4

Explanation:
AWS Data Exchange is a service that makes it easy to find, subscribe to, and use third-party data in
the cloud. It provides a secure and reliable way to access and integrate data from various sources,
such as data providers, public datasets, or AWS services. Using AWS Data Exchange, you can browse
and subscribe to data products that suit your needs, and then use API calls or the AWS Management
Console to export the data to Amazon S3, where you can use it with your existing analytics platform.
This solution minimizes the effort and time required to incorporate third-party datasets, as you do
not need to set up and manage data pipelines, storage, or access controls. You also benefit from the
data quality and freshness provided by the data providers, who can update their data products as
frequently as needed12.
The other options are not optimal for the following reasons:
B . Use API calls to access and integrate third-party datasets from AWS. This option is vague and does
not specify which AWS service or feature is used to access and integrate third-party datasets. AWS
offers a variety of services and features that can help with data ingestion, processing, and analysis,
but not all of them are suitable for the given scenario. For example, AWS Glue is a serverless data
integration service that can help you discover, prepare, and combine data from various sources, but
it requires you to create and run data extraction, transformation, and loading (ETL) jobs, which can
add operational overhead3.
C . Use Amazon Kinesis Data Streams to access and integrate third-party datasets from AWS
CodeCommit repositories. This option is not feasible, as AWS CodeCommit is a source control service
that hosts secure Git-based repositories, not a data source that can be accessed by Amazon Kinesis
Data Streams. Amazon Kinesis Data Streams is a service that enables you to capture, process, and
analyze data streams in real time, such as clickstream data, application logs, or IoT telemetry. It does
not support accessing and integrating data from AWS CodeCommit repositories, which are meant for
storing and managing code, not data .
D . Use Amazon Kinesis Data Streams to access and integrate third-party datasets from Amazon
Elastic Container Registry (Amazon ECR). This option is also not feasible, as Amazon ECR is a fully
managed container registry service that stores, manages, and deploys container images, not a data
source that can be accessed by Amazon Kinesis Data Streams. Amazon Kinesis Data Streams does not
support accessing and integrating data from Amazon ECR, which is meant for storing and managing
container images, not data .
Reference:
1: AWS Data Exchange User Guide
2: AWS Data Exchange FAQs
3: AWS Glue Developer Guide
: AWS CodeCommit User Guide
: Amazon Kinesis Data Streams Developer Guide
: Amazon Elastic Container Registry User Guide
: Build a Continuous Delivery Pipeline for Your Container Images with Amazon ECR as Source

Question: 4
A financial company wants to implement a data mesh. The data mesh must support centralized data
governance, data analysis, and data access control. The company has decided to use AWS Glue for
data catalogs and extract, transform, and load (ETL) operations. Which combination of AWS services
will implement a data mesh? (Choose two.) A. Use Amazon Aurora for data storage. Use an Amazon
Redshift provisioned cluster for data

www.dumpsvibe.com
Questions & Answers PDF Page 5

analysis.
B. Use Amazon S3 for data storage. Use Amazon Athena for data analysis.
C. Use AWS Glue DataBrewfor centralized data governance and access control.
D. Use Amazon RDS for data storage. Use Amazon EMR for data analysis.
E. Use AWS Lake Formation for centralized data governance and access control.

Answer: B E
Explanation:
A data mesh is an architectural framework that organizes data into domains and treats data as
products that are owned and offered for consumption by different teams1. A data mesh requires a
centralized layer for data governance and access control, as well as a distributed layer for data
storage and analysis. AWS Glue can provide data catalogs and ETL operations for the data mesh, but
it cannot provide data governance and access control by itself2. Therefore, the company needs to
use another AWS service for this purpose. AWS Lake Formation is a service that allows you to create,
secure, and manage data lakes on AWS3. It integrates with AWS Glue and other AWS services to
provide centralized data governance and access control for the data mesh. Therefore, option E is
correct.
For data storage and analysis, the company can choose from different AWS services depending on
their needs and preferences. However, one of the benefits of a data mesh is that it enables data to be
stored and processed in a decoupled and scalable way1. Therefore, using serverless or managed
services that can handle large volumes and varieties of data is preferable. Amazon S3 is a highly
scalable, durable, and secure object storage service that can store any type of data. Amazon Athena
is a serverless interactive query service that can analyze data in Amazon S3 using standard SQL.
Therefore, option B is a good choice for data storage and analysis in a data mesh. Option A, C, and D
are not optimal because they either use relational databases that are not suitable for storing diverse
and unstructured data, or they require more management and provisioning than serverless
services. Reference:
1: What is a Data Mesh? - Data Mesh Architecture Explained - AWS
2: AWS Glue - Developer Guide
3: AWS Lake Formation - Features
[4]: Design a data mesh architecture using AWS Lake Formation and AWS Glue
[5]: Amazon S3 - Features
[6]: Amazon Athena - Features

Question: 5
A data engineer maintains custom Python scripts that perform a data formatting process that many
AWS Lambda functions use. When the data engineer needs to modify the Python scripts, the data
engineer must manually update all the Lambda functions.
The data engineer requires a less manual way to update the Lambda functions.
Which solution will meet this requirement?
A. Store a pointer to the custom Python scripts in the execution context object in a shared Amazon
S3 bucket.
B. Package the custom Python scripts into Lambda layers. Apply the Lambda layers to the Lambda
functions.
C. Store a pointer to the custom Python scripts in environment variables in a shared Amazon S3

www.dumpsvibe.com
Questions & Answers PDF Page 6

bucket.
D. Assign the same alias to each Lambda function. Call reach Lambda function by specifying the
function's alias.

Answer: B
Explanation:
Lambda layers are a way to share code and dependencies across multiple Lambda functions. By
packaging the custom Python scripts into Lambda layers, the data engineer can update the scripts in
one place and have them automatically applied to all the Lambda functions that use the layer. This
reduces the manual effort and ensures consistency across the Lambda functions. The other options
are either not feasible or not efficient. Storing a pointer to the custom Python scripts in the execution
context object or in environment variables would require the Lambda functions to download the
scripts from Amazon S3 every time they are invoked, which would increase latency and cost.
Assigning the same alias to each Lambda function would not help with updating the Python scripts,
as the alias only points to a specific version of the Lambda function code. Reference:
AWS Lambda layers
AWS Certified Data Engineer - Associate DEA-C01 Complete Study Guide, Chapter 3: Data Ingestion
and Transformation, Section 3.4: AWS Lambda

www.dumpsvibe.com
 Thank You for trying Amazon-DEA-C01 PDF Demo

https://www.dumpsvibe.com/amazon/data-engineer-associate-dumps.html

Start Your Amazon-DEA-C01 Preparation

[Limited Time Offer] Use Coupon "GET20OFF" for extra

www.dumpsvibe.com