A company requires all cloud resources to be deployed using AWS CloudFormation. To enforce this, an automatic notification via Amazon SNS must be set up for the security team's email upon the creation of an IAM role outside of CloudFormation. What is the appropriate solution?

Exam-Like

Deploy an AWS Lambda to monitor CloudTrail for IAM role creations not initiated by CloudFormation and publish alerts to an SNS topic.

25.0%

Utilize an AWS Fargate task in ECS to check CloudTrail for unauthorized IAM role creations and send notifications through an SNS topic.

0.0%

Establish an EC2 instance with a script to detect IAM role creations bypassing CloudFormation, with the script configured to alert the SNS topic.

0.0%

Set up an Amazon EventBridge rule to detect direct IAM role creations and immediately notify the specified SNS topic.

75.0%

AWS Certified Developer - Associate