# Hands-on Labs & Final Challenge

#### **Scenario:**

SecureCart’s security team must **audit and implement robust data security controls** across **all data assets**.

#### **Final Study Group Challenges:**

✅ **Scenario 1:** Apply IAM Policies & SCPs to Restrict Data Access\
✅ **Scenario 2:** Encrypt S3, RDS, and EBS Data Using AWS KMS\
✅ **Scenario 3:** Implement Data Retention Policies Using S3 Lifecycle Rules\
✅ **Scenario 4:** Automate Backups & Disaster Recovery Using AWS Backup\
✅ **Scenario 5:** Monitor Sensitive Data Using Amazon Macie & AWS Config

🔹 **Outcome:** Learners **demonstrate expertise in securing AWS data assets**.

***

### **📚 Recommended Study Resources**

✅ **AWS Well-Architected Framework – Security & Reliability Pillars**\
✅ **AWS Key Management Service (KMS) Documentation**\
✅ **Amazon Macie for Data Classification**\
✅ **AWS Backup & Disaster Recovery Strategies**\
✅ **AWS IAM & Resource Policies Best Practices**

### **🚀 Next Steps**

Would you like:\
✅ **Terraform automation scripts for data security implementation?**\
✅ **Scenario-based quizzes for each study group session?**\
✅ **Instructor-led deep-dive workshops?**


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://awsinpractice.itassist.com/study-group/aws-certified-solutions-architect-associate/domain-1-design-secure-architectures/task-statement-1.3-determine-appropriate-data-security-controls/hands-on-labs-and-final-challenge.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.