Exam DEA-C01 Topic 2 Question 219 Discussion

Actual exam question for Snowflake's DEA-C01 exam
Question #: 219
Topic #: 2
A company runs a multi-tenant Amazon EMR cluster on Amazon EC2 instances. Multiple teams perform interactive query analyses and data transformations on the data in the EMR cluster. The teams can access the cluster only through EMR Studio workspaces and EMR steps.
The teams need to use EMR steps to run Apache Spark jobs to fetch data from an Amazon DynamoDB table. The DynamoDB table contains confidential data that must be accessible to only one specific team. The company needs to ensure that only the appropriate team can access the confidential data in the EMR cluster. Which solution will meet these requirements?

Suggested Answer: A Vote an answer

Runtime roles for EMR steps allow each submitted step (such as a Spark job) to assume a distinct IAM role at execution time. By granting DynamoDB read permissions only to the role used by the authorized team's steps, the confidential table data becomes accessible only to that team's Spark jobs, while other teams' steps run with roles that lack access.

by Kenneth at Jul 08, 2026, 10:46 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10