A company is utilizing Amazon GuardDuty to monitor its AWS environment. The security team has a requirement to automatically create tickets in a third-party ticketing system for all High severity findings detected by GuardDuty. The integration must be done through email. Which AWS service configuration would achieve this automation?

Exam-Like

Set up a verified identity for the third-party ticketing system's email in Amazon Simple Email Service (SES). Configure an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and set the SES identity as the target.

0.0%

Establish an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it. Create an Amazon EventBridge rule with an event pattern to detect High severity GuardDuty findings and designate the SNS topic as the target.

100.0%

Utilize the GuardDuty CreateFilter API to create a filter that monitors for High severity findings. Export the filtered results to an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it.

0.0%

Employ the GuardDuty CreateFilter API to create a filter for High severity findings. Set up an Amazon Simple Notification Service (SNS) topic and subscribe the third-party ticketing system's email to it. Then, create an Amazon EventBridge rule with an event pattern to match the filtered GuardDuty findings and set the SNS topic as the target.

0.0%

AWS Certified Security - Specialty

Get started today

Comments