Multiple Choice
A Security Engineer must design a system that can detect whether a file on an Amazon EC2 host has been modified. The system must then alert the Security Engineer of the modification. What is the MOST efficient way to meet these requirements?
A) Install antivirus software and ensure that signatures are up-to-date. Configure Amazon CloudWatch alarms to send alerts for security events.
B) Install host-based IDS software to check for file integrity. Export the logs to Amazon CloudWatch Logs for monitoring and alerting.
C) Export system log files to Amazon S3. Parse the log files using an AWS Lambda function that will send alerts of any unauthorized system login attempts through Amazon SNS.
D) Use Amazon CloudWatch Logs to detect file system changes. If a change is detected, automatically terminate and recreate the instance from the most recent AMI. Use Amazon SNS to send notification of the event.
Correct Answer:
Verified
Correct Answer:
Verified
Q170: The Development team receives an error message
Q171: A company has developed a new Amazon
Q172: While analyzing a company's security solution, a
Q173: The Security Engineer is given the following
Q174: A Security Engineer is setting up an
Q176: An organization has a multi-petabyte workload that
Q177: A company is developing a highly resilient
Q178: A company is hosting a web application
Q179: Two Amazon EC2 instances in different subnets
Q180: An application has been built with Amazon