Multiple Choice
A company's security policy requires that VPC Flow Logs are enabled on all VPCs. A Security Engineer is looking to automate the process of auditing the VPC resources for compliance. What combination of actions should the Engineer take? (Choose two.)
A) Create an AWS Lambda function that determines whether Flow Logs are enabled for a given VPC.
B) Create an AWS Config configuration item for each VPC in the company AWS account.
C) Create an AWS Config managed rule with a resource type of AWS:: Lambda:: Function.
D) Create an Amazon CloudWatch Event rule that triggers on events emitted by AWS Config.
E) Create an AWS Config custom rule, and associate it with an AWS Lambda function that contains the evaluating logic.
Correct Answer:
Verified
Correct Answer:
Verified
Q180: An application has been built with Amazon
Q181: An Application Developer is using an AWS
Q182: Example.com hosts its internal document repository on
Q183: Unapproved changes were previously made to a
Q184: An employee accidentally exposed an AWS access
Q186: In response to the past DDoS attack
Q187: A developer reported that AWS CloudTrail was
Q188: A Security Engineer for a large company
Q189: A company uses multiple AWS accounts managed
Q190: A company recently performed an annual security