Your organization requires a solution to detect and alert on any unauthorized changes to IAM policies. How would you use AWS CloudTrail and AWS Config to achieve this, and how would you configure them to provide comprehensive security insights?

Simulated

Use AWS CloudTrail for logging API calls and AWS Config for recording IAM policy changes.

100.0%

Configure AWS Security Hub to aggregate findings from AWS CloudTrail and AWS Config.

0.0%

Manually review each IAM policy for unauthorized changes.

0.0%

Enable default settings on all IAM policies to ensure security.

0.0%

AWS Certified Security - Specialty