DOP-C02 · Question #83
DOP-C02 Question #83: Real Exam Question with Answer & Explanation
Sign in or unlock DOP-C02 to reveal the answer and full explanation for question #83. The question stem and answer options stay visible for context.
Question
A company's developers use Amazon EC2 instances as remote workstations. The company is concerned that users can create or modify EC2 security groups to allow unrestricted inbound access. A DevOps engineer needs to develop a solution to detect when users create unrestricted security group rules. The solution must detect changes to security group rules in near real time, remove unrestricted rules, and send email notifications to the security team. The DevOps engineer has created an AWS Lambda function that checks for security group ID from input, removes rules that grant unrestricted access, and sends notifications through Amazon Simple Notification Service (Amazon SNS). What should the DevOps engineer do next to meet the requirements?
Options
- AConfigure the Lambda function to be invoked by the SNS topic. Create an AWS CloudTrail
- BCreate an Amazon EventBridge scheduled rule to invoke the Lambda function. Define a schedule
- CCreate an Amazon EventBridge event rule that has the default event bus as the source. Define
- DCreate an Amazon EventBridge custom event bus that subscribes to events from all AWS
Unlock DOP-C02 to see the answer
You've previewed enough free DOP-C02 questions. Unlock DOP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.