AWS Certified Security - Specialty
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
Your organization has recently experienced a security breach that has affected its AWS infrastructure. As an AWS Certified Security - Specialty professional, you are tasked with automating the remediation process. Describe the steps you would take to automate the remediation using AWS services, and explain how you would ensure the process is effective and efficient.
A
Use AWS Lambda to create a function that terminates the compromised EC2 instance and creates a new instance with the same configuration.
B
Use AWS Step Functions to create a state machine that triggers an AWS Lambda function to isolate the compromised EC2 instance, captures forensic data, and initiates a root cause analysis using AWS Detective.
C
Use EventBridge to create a rule that triggers an AWS Lambda function to take a snapshot of the compromised EC2 instance's Amazon EBS volume and store it in an isolated Amazon S3 bucket.
D
Use AWS Systems Manager Runbooks to create a runbook that automates the process of isolating the compromised EC2 instance, capturing forensic data, and initiating a root cause analysis using AWS Detective.