Answer-first summary for fast verification
Answer: Set up an Amazon EventBridge rule that reacts to new Security Hub findings. Configure an AWS Lambda function as the target for the rule to remediate the findings.
The correct answer is A. This option involves setting up an Amazon EventBridge rule that reacts to new Security Hub findings and configuring an AWS Lambda function as the target for the rule to remediate the findings. EventBridge allows for event-driven automation, and Lambda provides the serverless compute that can execute custom logic to handle the findings. This combination allows for dynamic and flexible remediation workflows that can be directly tied to the specific findings generated by the third-party cloud security scanning solution.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company has integrated a third-party cloud security scanning solution with AWS Security Hub. The security engineer is responsible for automating the remediation of findings reported by this third-party solution. Which of the following AWS services and configurations should be utilized to achieve this automation?
A
Set up an Amazon EventBridge rule that reacts to new Security Hub findings. Configure an AWS Lambda function as the target for the rule to remediate the findings.
B
Set up a custom action in Security Hub. Configure the custom action to call AWS Systems Manager Automation runbooks to remediate the findings.
C
Set up a custom action in Security Hub. Configure an AWS Lambda function as the target for the custom action to remediate the findings.
D
Set up AWS Config rules to use AWS Systems Manager Automation runbooks to remediate the findings.
No comments yet.