Multiple Choice
During an audit, a security team discovered that a development team was putting IAM user secret access keys in their code and then committing it to an AWS CodeCommit repository. The security team wants to automatically find and remediate instances of this security vulnerability. Which solution will ensure that the credentials are appropriately secured automatically?
A) Run a script nightly using AWS Systems Manager Run Command to search for credentials on the development instances. If found, use AWS Secrets Manager to rotate the credentials.
B) Use a scheduled AWS Lambda function to download and scan the application code from CodeCommit. If credentials are found, generate new credentials and store them in AWS KMS.
C) Configure Amazon Macie to scan for credentials in CodeCommit repositories. If credentials are found, trigger an AWS Lambda function to disable the credentials and notify the user.
D) Configure a CodeCommit trigger to invoke an AWS Lambda function to scan new code submissions for credentials. If credentials are found, disable them in AWS IAM and notify the user.
Correct Answer:
Verified
Correct Answer:
Verified
Q423: An organization has two Amazon EC2 instances:
Q424: Your team has a tomcat-based Java application
Q425: Which of the following rules must be
Q426: An AWS account owner has setup multiple
Q427: A company has a legacy application running
Q429: A company is currently using AWS CodeCommit
Q430: A company is moving a business-critical application
Q431: A company is developing a web application
Q432: A large financial company is deploying applications
Q433: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1091/.jpg" alt=" Refer to the