Company policy requires that all insecure server protocols, such as FTP, Telnet, HTTP, etc be disabledon all servers. The security team would like to regularly check all servers to ensure compliance withthis requirement by using a scheduled CloudWatch event to trigger a review of the currentinfrastructure. What process will check compliance of the company's EC2 instances? Please select:

Question

PRIYANK SAXENA · Accepted Answer

Run an Amazon inspector assessment using the Runtime Behavior Analysis rules package against every EC2 instance.

PRIYANK SAXENA · Answer

Trigger an AWS Config Rules evaluation of the restricted-common-ports rule against every EC2 instance.

PRIYANK SAXENA · Answer

Query the Trusted Advisor API for all best practice security checks and check for "action recommened" status.

PRIYANK SAXENA · Answer

Enable a GuardDuty threat detection analysis targeting the port configuration on every EC2 instance.

Question list

List of questions

Question 1

(0)

Question 2

(0)

Question 3

(0)

Question 4

(0)

Question 5

(0)

Question 6

(0)

Question 7

(0)

Question 8

(0)

Question 9

(0)

Question 10

(0)

Related questions

Question 298 - SCS-C01 discussion

Suggested answer: D

0 comments