A DevOps Engineer just joined a new company that is already running workloads on Amazon EC2 instances. AWS has been adopted incrementally with no central governance. The Engineer must now assess how well the existing deployments comply with the following requirements: EC2 instances are running only approved AMIs. Amazon EBS volumes are encrypted. EC2 instances have an Owner tag. Root login over SSH is disabled on EC2 instances. Which services should the Engineer use to perform this assessment with the LEAST amount of effort? (Select TWO.)
A) AWS Config
B) Amazon GuardDuty
C) AWS System Manager
D) AWS Directory Service
E) Amazon Inspector
Correct Answer:
Verified
Q176: A DevOps Engineer manages a large commercial
Q177: An application runs on Amazon EC2 instances
Q178: A rapidly growing company wants to scale
Q179: A DevOps Engineer needs to design and
Q180: A DevOps Engineer must automate a weekly
Q182: A company is using an AWS CodeBuild
Q183: A company is reviewing its IAM policies.
Q184: A DevOps Engineer is asked to implement
Q185: A Development team is adding a new
Q186: A Security team is concerned that a
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents