A company is using a single AWS account for testing applications on Amazon EC2 instances. They have enabled AWS Config within this account and have set up the restricted-ssh managed rule to ensure security group compliance. The company requires an automated monitoring system that can deliver a real-time, customized notification whenever a security group fails to comply with the restricted-ssh rule. This notification must include the name and ID of the non-compliant security group. To facilitate this, a DevOps engineer has already created an Amazon Simple Notification Service (Amazon SNS) topic and subscribed relevant personnel. What additional steps should the DevOps engineer take to implement this automated monitoring and notification system? | AWS Certified DevOps Engineer - Professional Quiz