Describe how you would design an incident response plan that includes the use of AWS WAF to protect against web application attacks. What specific rules would you set up in AWS WAF and how would these rules integrate with the overall security posture of the environment?

Simulated

Use AWS WAF only for basic blocking without specific rules.

0.0%

Set up specific rules in AWS WAF to block common web application attacks and integrate these with the overall security strategy.

100.0%

Ignore AWS WAF and rely on network-level protections.

0.0%

Use AWS WAF but only for compliance purposes.

0.0%

AWS Certified Security - Specialty