Describe a strategy for using AWS Config to monitor and enforce compliance with security best practices across multiple AWS accounts. Include how you would set up AWS Config rules, what types of rules would be essential, and how you would handle non-compliant resources.

Simulated

Enable AWS Config in each account without setting up any rules.

0.0%

Set up AWS Config rules to check for compliance with security best practices such as encryption at rest, MFA on root account, and public access restrictions, and use automated remediation actions for non-compliant resources.

100.0%

Use AWS Config to log all configuration changes and manually review them for compliance.

0.0%

Disable AWS Config in all accounts except the master account to reduce costs.

0.0%

AWS Certified Security - Specialty

Get started today

Comments

Describe a strategy for using AWS Config to monitor and enforce compliance with security best practices across multiple AWS accounts. Include how you would set up AWS Config rules, what types of rules would be essential, and how you would handle non-compliant resources.