Domain 3.2: Security Improvement — AWS SAP-C02 Practice Question 27

How to approach this question

Match vulnerability scanning to Inspector and OS patching to Systems Manager.

Full Answer

C.Amazon Inspector for scanning, and AWS Systems Manager Patch Manager for patching.✓ Correct

Amazon Inspector for scanning, and AWS Systems Manager Patch Manager for patching.

Amazon Inspector is an automated vulnerability management service. AWS Systems Manager Patch Manager automates the process of patching managed instances with both security related and other types of updates.

Common mistakes

Confusing GuardDuty (threat detection) with Inspector (vulnerability scanning).

A security audit reveals that several Amazon EC2 instances have critical OS vulnerabilities. The security team wants to automate the process of scanning for vulnerabilities and applying OS patches across all accounts in the organization. Which combination of services should be used?

How to approach this question

Full Answer

Common mistakes

Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 1

More questions from this exam