CRISC Risk and Control Monitoring and Reporting • Set 7
CRISC Risk and Control Monitoring and Reporting Practice Test 7 — 15 questions with explanations. Free, no signup.
Refer to the exhibit. This JSON snippet defines a monitoring policy for S3 bucket access. Which of the following is a potential risk that might NOT be detected by this monitoring policy?
{
"PolicyName": "S3BucketAccessMonitor",
"Rules": [
{
"Effect": "Deny",
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::critical-data/*",
"Condition": {"IpAddress": {"aws:SourceIp": "10.0.0.0/8"}}
},
{
"Effect": "Allow",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::critical-data/*",
"Condition": {"IpAddress": {"aws:SourceIp": "10.0.0.0/8"}}
}
]
}