Answer-first summary for fast verification
Answer: Threat detection
## Explanation The correct answer is **Threat detection** because: - **Threat detection** in the AWS CAF security perspective focuses on identifying security misconfigurations, vulnerabilities, and unexpected behaviors through continuous monitoring and analysis - This capability helps organizations understand their security posture and prioritize protective controls based on detected threats - It enables proactive identification of security issues before they can be exploited **Why other options are incorrect:** - **Identity and access management**: Focuses on authentication, authorization, and access control, not specifically on identifying misconfigurations - **Platform engineering**: Deals with building secure infrastructure foundations, not threat identification - **Availability and continuity management**: Focuses on business continuity and disaster recovery, not security threat detection Threat detection capabilities in AWS CAF include using services like AWS GuardDuty, AWS Security Hub, and AWS Config to continuously monitor for security issues and misconfigurations.
Author: Ritesh Yadav
Ultimate access to all questions.
No comments yet.
A company is migrating to the AWS Cloud. The company wants to understand and identify potential security misconfigurations or unexpected behaviors. The company wants to prioritize any protective controls it might need.
Which AWS Cloud Adoption Framework (AWS CAF) security perspective capability will meet these requirements?
A
Identity and access management
B
Threat detection
C
Platform engineering
D
Availability and continuity management