Multiple Choice
A Security Engineer received an AWS Abuse Notice listing EC2 instance IDs that are reportedly abusing other hosts. Which action should the Engineer take based on this situation? (Choose three.)
A) Use AWS Artifact to capture an exact image of the state of each instance.
B) Create EBS Snapshots of each of the volumes attached to the compromised instances.
C) Capture a memory dump.
D) Log in to each instance with administrative credentials to restart the instance.
E) Revoke all network ingress and egress except for to/from a forensics workstation.
F) Run Auto Recovery for Amazon EC2.
Correct Answer:
Verified
Correct Answer:
Verified
Q2: A Systems Engineer is troubleshooting the connectivity
Q3: The Security Engineer is managing a web
Q4: A Security Administrator is configuring an Amazon
Q5: A company has hundreds of AWS accounts,
Q6: A developer is building a serverless application
Q8: A company wants to deploy a distributed
Q9: The Security team believes that a former
Q10: A Security Administrator has a website hosted
Q11: A company's security engineer has been asked
Q12: A company has an application hosted in