Topic 1, Exam Pool OCT
A company’s security team has defined a set of AWS Config rules that must be enforced globally in all AWS accounts the company owns.
What should be done to provide a consolidated compliance overview for the security team?
A . Use AWS Organizations to limit AWS Config rules to the appropriate Regions, and then consolidate the Amazon CloudWatch dashboard into one AWS account.
B . Use AWS Config aggregation to consolidate the views into one AWS account, and provide role access to the security team.
C . Consolidate AWS Config rule results with an AWS Lambda function and push data to Amazon SQ
D . Use Amazon SNS to consolidate and alert when some metrics are triggered.
E . Use Amazon GuardDuty to load data results from the AWS Config rules compliance status, aggregate GuardDuty findings of all AWS accounts into one AWS account, and provide role access to the security team.
Answer: B
Leave a Reply