SCS-C03 · Question #138
SCS-C03 Question #138: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #138. The question stem and answer options stay visible for context.
Question
A company runs a web application on a fleet of Amazon EC2 instances that are in an Auto Scaling group. The EC2 instances are in the same VPC subnet as other workloads. A security engineer deploys Amazon GuardDuty and integrates it with AWS Security Hub. The security engineer needs to implement an automated solution to detect and respond to anomalous traffic patterns. The solution must follow AWS best practices for initial incident response and must minimize disruption to the web application. Which solution will meet these requirements?
Options
- ADisable the instance profile access keys by using AWS Lambda.
- BRemove the affected instance from the Auto Scaling group and isolate it with a restricted security
- CUpdate the network ACL to block the detected traffic source.
- DSend GuardDuty findings to Amazon SNS for email notification.
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.