ExamQuestions.com

Register
Login
AWS Certified Security Specialty Exam Questions

Amazon

AWS Certified Security Specialty

12 / 310

Question 12:

A security team must present a daily briefing to the CISO that includes a report of which of the company’s thousands of EC2 instances and on-premises servers are missing the latest security patches. All instances/servers must be brought into compliance within 24 hours so they do not show up on the next day’s report. 
How can the security team fulfill these requirements?
 

Answer options:

A.Use Amazon QuickSight and Cloud Trail to generate the report of out of compliance instances/servers. Redeploy all out of compliance instances/servers using an AMI with the latest patches.
B.Use Systems Manager Patch Manager to generate the report of out of compliance instances/ servers. Use Systems Manager Patch Manager to install the missing patches.
C.Use Systems Manager Patch Manager to generate the report of out of compliance instances/ servers. Redeploy all out of compliance instances/servers using an AMI with the latest patches.
D.Use Trusted Advisor to generate the report of out of compliance instances/ servers. Use Systems Manager Patch Manager to install the missing patches.