PCCSE Question #256: Real Exam Question with Answer & Explanation

Sign in or unlock PCCSE to reveal the answer and full explanation for question #256. The question stem and answer options stay visible for context.

Cloud Infrastructure Entitlement Management (CIEM)

Question

Which RQL query will help create a custom identity and access management (IAM) policy to alert on Lambda functions that have permission to terminate EC2 instances?

Options

Aiam from cloud.resource where dest.cloud.type = 'AWS' AND source.cloud.service.name =
Bconfig from iam where dest.cloud.type = 'AWS' AND source.cloud.service.name = 'ec2' AND
Ciam from cloud.resource where cloud.type equals 'AWS' AND cloud.resource.type equals 'lambda
Dconfig from iam where dest.cloud.type = 'AWS' AND source.cloud.service.name = 'lambda' AND

Unlock PCCSE to see the answer

You've previewed enough free PCCSE questions. Unlock PCCSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PCCSE - $49.99 / 30 days Sign in

Topics

#RQL#IAM#CIEM#Serverless Security

Full PCCSE Practice Browse All PCCSE Questions