Multiple Choice
A security engineer needs to ensure their company's use of AWS meets AWS security best practices. As part of this, the AWS account root user must not be used for daily work. The root user must be monitored for use, and the security team must be alerted as quickly as possible if the root user is used. Which solution meets these requirements?
A) Set up an Amazon CloudWatch Events rule that triggers an Amazon SNS notification.
B) Create root user access keys. Use an AWS Lambda function to parse AWS CloudTrail logs from Amazon S3 and generate notifications using Amazon SNS.
C) Set up a rule in AWS Config to trigger root user events. Trigger an AWS Lambda function and generate notifications using Amazon SNS.
D) Use Amazon Inspector to monitor the usage of the root user and generate notifications using Amazon SNS.
Correct Answer:
Verified
Correct Answer:
Verified
Q35: A company plans to use custom AMIs
Q36: Which of the following are valid configurations
Q37: A company is setting up products to
Q38: A Security Engineer is building a Java
Q39: An application uses Amazon Cognito to manage
Q41: Authorized Administrators are unable to connect to
Q42: An application outputs logs to a text
Q43: A Security Engineer has discovered that, although
Q44: Which of the following is the most
Q45: A company is configuring three Amazon EC2