SCS-C02 · Question #48
SCS-C02 Question #48: Real Exam Question with Answer & Explanation
The correct answer is C: Activate Amazon GuardDuty in each production account. In a dedicated logging account,. https://aws.amazon.com/blogs/security/how-to-manage-amazon-guardduty-security-findings- across-multiple-accounts/ https://repost.aws/knowledge-center/guardduty-eventbridge-sns-rule
Question
A company uses AWS Organizations and has production workloads across multiple AWS accounts. A security engineer needs to design a solution that will proactively monitor for suspicious behavior across all the accounts that contain production workloads. The solution must automate remediation of incidents across the production accounts. The solution also must publish a notification to an Amazon Simple Notification Service (Amazon SNS) topic when a critical security finding is detected. In addition, the solution must send all security incident logs to a dedicated account. Which solution will meet these requirements?
Options
- AActivate Amazon GuardDuty in each production account. In a dedicated logging account,
- BActivate AWS Security Hub in each production account. In a dedicated logging account,
- CActivate Amazon GuardDuty in each production account. In a dedicated logging account,
- DActivate AWS Security Hub in each production account. In a dedicated logging account,
Explanation
https://aws.amazon.com/blogs/security/how-to-manage-amazon-guardduty-security-findings- across-multiple-accounts/ https://repost.aws/knowledge-center/guardduty-eventbridge-sns-rule
Community Discussion
No community discussion yet for this question.