A company stores data in an S3 bucket. Some of the data contains sensitive information. They need to ensure that the bucket complies with PCI DSS compliance standards. Which of the following should be implemented to fulfil this requirement? Choose 2 answers from the options given below

Answer options:

A.Enable server-side encryption for the bucket
B.Enable versioning for the bucket
C.Ensure that access to the bucket is only given to one IAM Role
D.Ensure that objects from the bucket are requested only via HTTPS

Answer – A and D
Here the main compliance should be to ensure there is encryption of objects at rest and in transit. Hence one can achieve this with server-side encryption and ensuring that all communication with the S3 bucket is done via HTTPS
For more information on the compliance with AWS, please refer to the below URL
https://aws.amazon.com/compliance/pci-dss-level-1-faqs/