Your organization has detected suspicious activity in its AWS environment, and you suspect that a resource has been compromised. Describe the steps you would take to respond to the compromised resource and investigate the incident.

Simulated

Immediately terminate the suspected compromised resource to prevent further damage.

0.0%

Isolate the suspected compromised resource to prevent lateral movement and limit the scope of the incident.

100.0%

Conduct a thorough investigation of the suspicious activity, including reviewing logs and monitoring tools, to determine the extent and severity of the incident.

0.0%

Notify the relevant stakeholders and initiate the incident response plan to coordinate a response to the incident.

0.0%

AWS Certified Security - Specialty

Get started today

Comments

Your organization has detected suspicious activity in its AWS environment, and you suspect that a resource has been compromised. Describe the steps you would take to respond to the compromised resource and investigate the incident.