AmazonAmazon
SCS-C02 · Question #445
SCS-C02 Question #445: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #445. The question stem and answer options stay visible for context.
Submitted by ashley.k· Mar 6, 2026
Question
A security engineer is designing security controls for a fleet of Amazon EC2 instances that run sensitive workloads in a VPC. The security engineer needs to implement a solution to detect and mitigate software vulnerabilities on the EC2 instances. Which solution will meet this requirement?
Options
- AScan the EC2 instances by using Amazon Inspector. Apply security patches and updates by
- BInstall host-based firewall and antivirus software on each EC2 instance. Use AWS Systems
- CInstall the Amazon CloudWatch agent on the EC2 instances. Enable detailed logging. Use
- DScan the EC2 instances by using Amazon GuardDuty Malware Protection. Apply security patches
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.