SAP-C02 · Question #740
SAP-C02 Question #740: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #740. The question stem and answer options stay visible for context.
Question
A company is deploying a new application on AWS. The application consists of an Amazon Elastic Kubernetes Service (Amazon EKS) cluster and an Amazon Elastic Container Registry (Amazon ECR) repository. The EKS cluster has an AWS managed node group. The company's security guidelines state that all resources on AWS must be continuously scanned for security vulnerabilities. Which solution will meet this requirement with the LEAST operational overhead?
Options
- AActivate AWS Security Hub. Configure Security Hub to scan the EKS nodes and the ECR
- BActivate Amazon Inspector to scan the EKS nodes and the ECR repository.
- CLaunch a new Amazon EC2 instance and install a vulnerability scanning tool from AWS
- DInstall the Amazon CloudWatch agent on the EKS nodes. Configure the CloudWatch agent to
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.