Explanation:
Option B is the correct choice as it includes services that are specifically designed for threat detection, detailed analysis, and policy validation, which are critical during a security incident.
Ultimate access to all questions.
No comments yet.
You are tasked with deploying AWS security services to enhance your incident response capabilities. Which services would you prioritize, and why?
A
Amazon Inspector for vulnerability assessments, AWS Config for configuration management, and AWS Security Hub for centralizing security alerts.
B
Amazon GuardDuty for threat detection, Amazon Detective for detailed analysis, and AWS Identity and Access Management Access Analyzer for policy validation.
C
AWS CloudTrail for logging, Amazon S3 for data storage, and AWS IAM for access control.
D
Block all network traffic using AWS Network Firewall, analyze logs with Amazon Elasticsearch, and use AWS Lambda for remediation scripts.