ExpertMedium1 markMultiple Choice
AWS SAA-C03 · Question 04 · Domain 1.2: Secure Workloads
A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized behavior, such as cryptocurrency mining on EC2 instances. Which service should be implemented?
A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized behavior, such as cryptocurrency mining on EC2 instances. Which service should be implemented?
Answer options:
A.
AWS CloudTrail
B.
Amazon Macie
C.
Amazon Inspector
D.
Amazon GuardDuty
How to approach this question
Look for 'continuous monitoring for malicious activity'. GuardDuty uses machine learning to detect anomalies.
Full Answer
D.Amazon GuardDuty✓ Correct
Amazon GuardDuty
Amazon GuardDuty continuously monitors CloudTrail logs, VPC Flow Logs, and DNS logs to identify unexpected and potentially unauthorized or malicious activity in your AWS environment.
Common mistakes
Selecting Inspector, which is for vulnerability scanning, rather than active threat detection.
Practice the full AWS SAA-C03 Practice Exam 3
65 questions · hints · full answers · grading
More questions from this exam
Q01A company stores sensitive documents in an Amazon S3 bucket. The security team requires that only...EasyQ02A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...MediumQ03A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (AL...EasyQ05A company needs to encrypt data at rest in Amazon RDS and manage database credentials securely. T...MediumQ06An application running on Amazon EC2 needs to access an Amazon DynamoDB table. What is the MOST s...Easy