Exam DEA-C01 Topic 2 Question 219 Discussion
Actual exam question for Snowflake's DEA-C01 exam
Question #: 219
Topic #: 2
Question #: 219
Topic #: 2
A company runs a multi-tenant Amazon EMR cluster on Amazon EC2 instances. Multiple teams perform interactive query analyses and data transformations on the data in the EMR cluster. The teams can access the cluster only through EMR Studio workspaces and EMR steps.
The teams need to use EMR steps to run Apache Spark jobs to fetch data from an Amazon DynamoDB table. The DynamoDB table contains confidential data that must be accessible to only one specific team. The company needs to ensure that only the appropriate team can access the confidential data in the EMR cluster. Which solution will meet these requirements?
The teams need to use EMR steps to run Apache Spark jobs to fetch data from an Amazon DynamoDB table. The DynamoDB table contains confidential data that must be accessible to only one specific team. The company needs to ensure that only the appropriate team can access the confidential data in the EMR cluster. Which solution will meet these requirements?
Suggested Answer: A Vote an answer
Runtime roles for EMR steps allow each submitted step (such as a Spark job) to assume a distinct IAM role at execution time. By granting DynamoDB read permissions only to the role used by the authorized team's steps, the confidential table data becomes accessible only to that team's Spark jobs, while other teams' steps run with roles that lack access.
by Kenneth at Jul 08, 2026, 10:46 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).