AWS Certified Security - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Establish an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it. Create an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and designate the SNS topic as the target.

The correct answer is B. By creating an Amazon Simple Notification Service (SNS) topic and subscribing the third-party ticketing system's email to it, you can ensure that any notifications sent to the SNS topic will be forwarded to the ticketing system. You then configure an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and designate the SNS topic as the target. This approach leverages EventBridge to detect the specific GuardDuty findings and SNS to handle the notification delivery, meeting the requirement without the need for additional filtering via GuardDuty APIs.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company is utilizing Amazon GuardDuty to monitor its AWS environment. The security team has a requirement to automatically create tickets in a third-party ticketing system for all High severity findings detected by GuardDuty. The integration must be done through email. Which AWS service configuration would achieve this automation?

Exam-Like

Set up a verified identity for the third-party ticketing system's email in Amazon Simple Email Service (SES). Configure an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and set the SES identity as the target.

0.0%

Establish an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it. Create an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and designate the SNS topic as the target.

75.0%

Utilize the GuardDuty CreateFilter API to create a filter that monitors for High severity findings. Export the filtered results to an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it.

Employ the GuardDuty CreateFilter API to create a filter for High severity findings. Set up an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it. Then, create an Amazon EventBridge rule with an event pattern to match the filtered GuardDuty findings and set the SNS topic as the target.