A company utilizes Amazon RDS for MySQL to power their applications. A recent security audit identified an RDS instance that does not adhere to the company's policy mandating encryption of data at rest. The security engineer is tasked with ensuring that all existing RDS databases are encrypted using server-side encryption and that any future instances not conforming to this policy are promptly identified. What two actions should the security engineer implement to achieve this goal? | AWS Certified Security - Specialty Quiz