Valid DSA-C03 Dumps shared by EduDump.com for Helping Passing DSA-C03 Exam! EduDump.com now offer the newest DSA-C03 exam dumps, the EduDump.com DSA-C03 exam questions have been updated and answers have been corrected get the newest EduDump.com DSA-C03 dumps with Test Engine here:
You are building a model deployment pipeline using a CI/CD system that connects to your Snowflake data warehouse from your external IDE (VS Code) and orchestrates model training and deployment. The pipeline needs to dynamically create and grant privileges on Snowflake objects (e.g., tables, views, warehouses) required for the model. Which of the following security best practices should you implement when creating and granting privileges within the pipeline?
Correct Answer: B
The principle of least privilege dictates that the pipeline should only have the minimum necessary privileges to perform its tasks. Creating a custom role with only the required privileges and granting it to a dedicated service account is the most secure approach. Using 'ACCOUNTADMIN' (Option A) or 'SYSADMIN' (Option C) grants excessive privileges. Hardcoding credentials (Option D) is a major security vulnerability. Granting 'OWNERSHIP (Option E) is generally not necessary and grants excessive control. This follows the principle of least privilege which is essential for secure Snowflake deployments. A dedicated role ensures that the pipeline cannot inadvertently perform actions outside of its intended scope.