DOP-C02 · Question #152
DOP-C02 Question #152: Real Exam Question with Answer & Explanation
Sign in or unlock DOP-C02 to reveal the answer and full explanation for question #152. The question stem and answer options stay visible for context.
Question
A company manages a multi-tenant environment in its VPC and has configured Amazon GuardDuty for the corresponding AWS account. The company sends all GuardDuty findings to AWS Security Hub. Traffic from suspicious sources is generating a large number of findings. A DevOps engineer needs to implement a solution to automatically deny traffic across the entire VPC when GuardDuty discovers a new suspicious source. Which solution will meet these requirements?
Options
- ACreate a GuardDuty threat list. Configure GuardDuty to reference the list. Create an AWS
- BConfigure an AWS WAF web ACL that includes a custom rule group. Create an AWS Lambda
- CConfigure a firewall in AWS Network Firewall. Create an AWS Lambda function that will create a
- DCreate an AWS Lambda function that will create a GuardDuty suppression rule. Configure the
Unlock DOP-C02 to see the answer
You've previewed enough free DOP-C02 questions. Unlock DOP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.