AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
Which AWS service helps you evaluate resource compliance against organizational standards and automatically remediate issues?
Real Exam
Community
RRitesh
0
A
AWS CloudWatch
B
AWS Config
C
AWS Systems Manager
D
AWS Shield
Explanation:
AWS Config is the correct service for evaluating resource compliance against organizational standards and automatically remediating issues. Here's why:
AWS Config:
- Continuously monitors and records AWS resource configurations
- Allows you to define compliance rules (Config Rules) that check if resources comply with your organizational standards
- Provides automatic remediation capabilities through AWS Config Remediation Actions
- Helps with compliance auditing, security analysis, and change management
Why other options are incorrect:
- AWS CloudWatch: Primarily for monitoring and observability (metrics, logs, alarms)
- AWS Systems Manager: For operational management and automation, but not specifically designed for compliance evaluation against standards
- AWS Shield: AWS's DDoS protection service, not related to compliance evaluation
AWS Config's key features include:
- Configuration History: Track changes to AWS resources over time
- Config Rules: Define rules to evaluate resource compliance
- Compliance Dashboard: View compliance status across resources
- Remediation Actions: Automatically fix non-compliant resources
- Integration: Works with AWS Security Hub and other security services
Comments
Loading comments...