ANS-C01 · Question #132
ANS-C01 Question #132: Real Exam Question with Answer & Explanation
Sign in or unlock ANS-C01 to reveal the answer and full explanation for question #132. The question stem and answer options stay visible for context.
Question
A company recently implemented a security policy that prohibits developers from launching VPC network infrastructure. The policy states that any time a NAT gateway is launched in a VPC, the company's network security team must immediately receive an alert to terminate the NAT gateway. The network security team needs to implement a solution that can be deployed across AWS accounts with the least possible administrative overhead. The solution also must provide the network security team with a simple way to view compliance history. Which solution will meet these requirements?
Options
- ADevelop a script that programmatically checks for NAT gateways in an AWS account, sends an
- BCreate an AWS Lambda function that programmatically checks for NAT gateways in an AWS
- CEnable Amazon GuardDuty. Create an Amazon EventBridge rule for the
- DCreate a custom AWS Config rule that checks for NAT gateways in an AWS account. Configure
Unlock ANS-C01 to see the answer
You've previewed enough free ANS-C01 questions. Unlock ANS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.