A company has containerized all of its in-house quality control applications. The company is running Jenkins on Amazon EC2, which requires patching and upgrading. The Compliance Officer has requested a DevOps Engineer begin encrypting build artifacts since they contain company intellectual property.
What should the DevOps Engineer do to accomplish this in the MOST maintainable manner?
A . Automate patching and upgrading using AWS Systems Manager on EC2 instances and encrypt Amazon EBS volumes by default.
B . Deploy Jenkins to an Amazon ECS cluster and copy build artifacts to an Amazon S3 bucket with default encryption enabled.
C . Leverage AWS CodePipeline with a build action and encrypt the artifacts using AWS Secrets Manager.
D . Use AWS CodeBuild with artifact encryption to replace the Jenkins instance running on Amazon EC2.
Answer: C
Leave a Reply