Explanation:
A comprehensive security strategy that includes immediate action, automated checks, and enhanced training ensures both rapid response to incidents and long-term prevention of similar issues. This multi-faceted approach strengthens the overall security posture by addressing immediate risks and promoting best practices.
Ultimate access to all questions.
No comments yet.
You are responsible for maintaining the security of an AWS environment that hosts sensitive data. A recent incident revealed that an IAM role had been misconfigured, granting unintended permissions to a Lambda function. What immediate and long-term measures would you take to prevent such incidents and enhance the overall security posture?
A
Immediately revoke all permissions from the Lambda function and conduct a manual review of all IAM roles.
B
Implement automated IAM policy checks using AWS Config rules to detect and alert on misconfigurations.
C
Increase user training on IAM best practices and enforce stricter approval processes for policy changes.
D
Combine all of the above measures to create a comprehensive security strategy.