SAA-C03 · Question #738
SAA-C03 Question #738: Real Exam Question with Answer & Explanation
The correct answer is A: Enable Amazon GuardDuty to generate findings. Invoke AWS Lambda for automated remediation. Amazon GuardDuty continuously monitors for malicious or unauthorized behavior, such as port scanning, DoS activity, and cryptocurrency mining. Findings from GuardDuty can trigger AWS Lambda functions for automated remediation, providing account-level threat detection and response
Question
A company experienced a breach from an attacker in its on-premises network. The attacker launched port scanning, waged an outbound DoS attack, and performed cryptocurrency mining. The company is moving to AWS to build a more resilient architecture that monitors and remediates these types of attacks at the account level. How should the company use AWS services to meet these requirements?
Options
- AEnable Amazon GuardDuty to generate findings. Invoke AWS Lambda for automated remediation
- BEnable AWS Config and configure policies to monitor against breaches. Invoke AWS Lambda for
- CEnable Amazon Macie to identify and classify security threats. Configure events in Amazon
- DEnable Amazon Inspector to generate assessment reports. Configure events in Amazon
Explanation
Amazon GuardDuty continuously monitors for malicious or unauthorized behavior, such as port scanning, DoS activity, and cryptocurrency mining. Findings from GuardDuty can trigger AWS Lambda functions for automated remediation, providing account-level threat detection and response with minimal operational overhead.
Community Discussion
No community discussion yet for this question.