Topic 1 Question 180

AWS Certified Security - Specialty

Topic 1 Question 180
A company wants to receive automated email notifications when AWS access keys from developer AWS accounts are detected on code repository sites.

Which solution will provide the required email notifications?
- Create an Amazon EventBridge rule to send Amazon Simple Notification Service (Amazon SNS) email notifications for Amazon GuardDuty UnauthorizedAccess:IAMUser/lnstanceCredentialExfiltration.OutsideAWS findings.
- Change the AWS account contact information for the Operations type to a separate email address. Periodically poll this email address for notifications.
- Create an Amazon EventBridge rule that reacts to AWS Health events that have a value of Risk for the service category. Configure email notifications by using Amazon Simple Notification Service (Amazon SNS).
- Implement new anomaly detection software. Ingest AWS CloudTrail logs. Configure monitoring for ConsoleLogin events in the AWS Management Console. Configure email notifications from the anomaly detection software.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: A
  Option A is the correct solution because it leverages Amazon GuardDuty to detect unauthorized use or exposure of AWS access keys and uses Amazon EventBridge along with Amazon SNS to provide automated email notifications, efficiently meeting the requirement with the least effort.
  
  👍 1
  mikelord2024/10/02
- https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_finding-types-iam.html#unauthorizedaccess-iam-instancecredentialexfiltrationoutsideaws A
  
  👍 1
  VPNalumni2024/10/11
- 正解だと思う選択肢: C
  Its C, since Q asks for DETECTION, whereas A is only after the event, GuardDuty finding indicates compromised access has already happened.
  
  👍 1
  SCSC02Q2024/12/29
シャッフルモード

ユーザの投票

コメント(6)