Your development team has started using AWS resources for development purposes. The AWS account has just been created. Your IT Security team is worried about possible leakage of AWS keys. What is the first level of measure that should be taken to protect the AWS account.

Answer options:

A.Delete the AWS keys for the root account
B.Create IAM Groups
C.Create IAM Roles
D.Restrict access using IAM policies

Answer – A
The first level or measure that should be taken is to delete the keys for the IAM root user.
As per the best practices for managing AWS access keys, the following are the key guidelines.
Remove (or don`t generate) an account access key for Root Account.
Use Groups to Assign Permissions to IAM Users.
Use temporary security credentials (IAM roles) instead of long-term access keys.
Start Using Permissions with AWS Managed Policies.
So as per the AWS best practices guidelines, we do see removing the access keys for root users should be the first level of measure to protect your AWS account.
For more information, refer to the following URLs:
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
https://docs.aws.amazon.com/general/latest/gr/aws-access-keys-best-practices.html