SAA-C03 Question #251: Real Exam Question with Answer & Explanation

Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #251. The question stem and answer options stay visible for context.

Submitted by alyssa_d· Mar 4, 2026Design Secure Architectures

Question

A solutions architect is designing a web application that will run on Amazon EC2 instances behind an Application Load Balancer (ALB). The company strictly requires that the application be resilient against malicious internet activity and attacks, and protect against new common vulnerabilities and exposures. What should the solutions architect recommend?

Options

ALeverage Amazon CloudFront with the ALB endpoint as the origin.
BDeploy an appropriate managed rule for AWS WAF and associate it with the ALB.
CSubscribe to AWS Shield Advanced and ensure common vulnerabilities and exposures are
DConfigure network ACLs and security groups to allow only ports 80 and 443 to access the EC2

Unlock SAA-C03 to see the answer

You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock SAA-C03 - $49.99 / 30 days Sign in

Full SAA-C03 Practice Browse All SAA-C03 Questions