AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

A company uses AWS Organizations. The company wants to apply security best practices from the AWS Well-Architected Framework to all of its AWS accounts.

Which AWS service will meet these requirements?

Real Exam

Community

RRitesh

Amazon Macie

Amazon Detective

AWS Control Tower

AWS Secrets Manager

Explanation:

AWS Control Tower is the correct answer because it provides a comprehensive solution for setting up and governing a secure, multi-account AWS environment following AWS best practices and the AWS Well-Architected Framework.

Key reasons:

AWS Organizations Integration: Control Tower works seamlessly with AWS Organizations to manage multiple AWS accounts
Security Best Practices: It automatically implements security guardrails and compliance controls based on AWS Well-Architected Framework principles
Multi-Account Governance: Provides centralized governance across all accounts in the organization
Automated Setup: Automates the setup of a secure landing zone with pre-configured security and compliance controls

The other options:

Amazon Macie: A data security service that uses machine learning to discover and protect sensitive data
Amazon Detective: A security service that helps analyze, investigate, and identify the root cause of security issues
AWS Secrets Manager: A service to securely store, retrieve, and manage secrets like database credentials and API keys

Only AWS Control Tower provides the comprehensive governance framework needed to apply security best practices across all AWS accounts in an organization.

Powered ByGPT-5.2

Comments

Loading comments...