A security team wants a centralized view of security alerts and compliance status across all their AWS accounts. They want to automatically check their environment against AWS Foundational Security Best Practices. Which TWO features does AWS Security Hub provide to meet these needs? (Select TWO.)

Answer options:

Aggregating security findings from multiple AWS services.

Automated compliance checks against industry standards.

Deep packet inspection of VPC traffic.

Automatic remediation of all security vulnerabilities.

Blocking malicious IP addresses at the edge.

How to approach this question

Identify Security Hub's core capabilities: finding aggregation and posture management (compliance checks).

Full Answer

Aggregating security findings from multiple AWS services., Automated compliance checks against industry standards.

AWS Security Hub provides a comprehensive view of your security state in AWS. It aggregates security findings from various AWS services and performs automated, continuous security best practice checks.

Common mistakes

Confusing Security Hub's aggregation role with active protection services like WAF.

Question 17 All questions Question 19

Practice the full AWS SAA-C03 Practice Exam 5

65 questions · hints · full answers · grading

More questions from this exam

Q01A company needs to grant an external auditor read-only access to specific AWS resources. The audi...Easy Q02An application running on EC2 instances needs to access objects in an S3 bucket. The security tea...Medium Q03A company is designing a VPC for a multi-tier web application. They need to block specific malici...Medium Q04A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...Hard Q05A company hosts a web application on an Application Load Balancer (ALB). They are experiencing SQ...Medium

View all 65 questions →