AWS Certified Security - Specialty (#24)

The Security Engineer implemented a new vault lock policy for 10TB of data and called

initiate-vault-lock

12 hours ago. The Audit team identified a typo that is allowing incorrect access to the vault.

What is the MOST cost-effective way to correct this?

Call the
abort-vault-lock
operation, fix the typo, and call the
initiate-vault-lock
again.
Copy the vault data to Amazon S3, delete the vault, and create a new vault with the data.
Update the policy, keeping the vault lock in place.
Update the policy and call
initiate-vault-lock
again to apply the new policy.