Topic 1 Question 2
A company has deployed applications on Amazon EC2 instances. The company needs to assess application vulnerabilities and must identify infrastructure deployments that do not meet best practices. Which AWS service can the company use to meet these requirements?
AWS Trusted Advisor
Amazon Inspector
AWS Config
Amazon GuardDuty
ユーザの投票
コメント(17)
Amazon Inspector for Audit CloudWatch for monitoring Config for compliance
👍 22Nepton2023/11/23- 正解だと思う選択肢: B
Inspector is all about security assessments of AWS based applications and their configurations against known vulnerabilities. GuardDuty is all about continuously and automatically process different foundational data sources such as CloudTrail event logs, VPC flow logs and DNS logs to find potential security threat over an entire AWS account not just only with applications and it also uses threat intelligence feeds, such as lists of malicious IP addresses and domains, and machine learning to identify unexpected, potentially unauthorized, and malicious activity within AWS environment. So as far as assessment is concerned Inspector is the right answer.
👍 11BShelat2024/09/21 - 正解だと思う選択肢: B
Amazon Inspector is specifically designed to assess the security of applications deployed on Amazon EC2 instances. It identifies vulnerabilities and deviations from best practices, providing detailed findings that help improve the security posture of your applications. This makes it the most suitable service for the company's need to assess application vulnerabilities and identify infrastructure deployments that do not meet best practices.
👍 3chalaka2024/09/21
シャッフルモード