AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

Which AWS service helps you evaluate resource compliance against organizational standards and automatically remediate issues?

Real Exam

Community

RRitesh

Last updated: December 3, 2025 at 18:26

AWS CloudWatch

AWS Config

AWS Systems Manager

AWS Shield

Explanation:

AWS Config is the correct service for evaluating resource compliance against organizational standards and automatically remediating issues. Here's why:

AWS Config:

Continuously monitors and records AWS resource configurations
Allows you to define compliance rules (Config Rules) that check if resources comply with your organizational standards
Provides automatic remediation capabilities through AWS Config Remediation Actions
Helps with compliance auditing, security analysis, and change management

Why other options are incorrect:

AWS CloudWatch: Primarily for monitoring and observability (metrics, logs, alarms)
AWS Systems Manager: For operational management and automation, but not specifically designed for compliance evaluation against standards
AWS Shield: AWS's DDoS protection service, not related to compliance evaluation

AWS Config's key features include:

Configuration History: Track changes to AWS resources over time
Config Rules: Define rules to evaluate resource compliance
Compliance Dashboard: View compliance status across resources
Remediation Actions: Automatically fix non-compliant resources
Integration: Works with AWS Security Hub and other security services

Powered ByGPT-5.2

Comments

Loading comments...