Exam: AWS Certified Cloud Practitioner 0 Likes
A company wants to implement threat detection on its AWS (CLF-C02)
A company wants to implement threat detection on its AWS infrastructure. However, the company does not want to deploy additional software.
Which AWS service should the company use to meet these requirements?
A) Amazon VPC
B) Amazon EC2
C) Amazon GuardDuty
D) AWS Direct Connect
Solution
Correct answer: C) Amazon GuardDuty.
Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior in your AWS environment. It analyzes VPC flow logs, AWS CloudTrail event logs, and DNS logs for potential threats. GuardDuty uses machine learning algorithms and threat intelligence to identify anomalies and suspicious activities, such as unusual API calls or unexpected network traffic patterns, without requiring any additional software deployment.
Category: Security and compliance in the AWS cloud
Language: English