AWS Cloud Security Best Practices | Tools for Ensuring the Right Security Settings

AWS Cloud Security Tools

Question

Your company is planning to move to the AWS Cloud.

Once it completely moves to the cloud, it wants to ensure that the right security settings are put in place.

Which of the following tools are helpful? (Select TWO.)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - A and B.

The AWS documentation mentions the following.

Trusted Advisor is a service to help you reduce cost, increase performance, and improve security by optimizing your AWS environment.

Trusted Advisor provides real-time guidance to help you provision your resources following AWS best practices.

The AWS Inspector can inspect EC2 Instances against common threats.

For more information on the AWS Trusted Advisor, please refer to the below URL:

https://aws.amazon.com/premiumsupport/trustedadvisor/ https://docs.aws.amazon.com/inspector/latest/userguide/inspector_introduction.html

The two AWS tools that are helpful in ensuring the right security settings are in place are:

A. AWS Inspector: This tool helps to assess the security and compliance of applications running on AWS infrastructure. AWS Inspector automates the security assessment process by analyzing the behavior of applications and identifying potential security issues. AWS Inspector uses a combination of rules packages and an agent to assess the security of your applications.

B. AWS Trusted Advisor: This tool provides real-time guidance to help you optimize your AWS infrastructure, improve security, and reduce costs. Trusted Advisor performs checks on your AWS environment and provides recommendations based on industry best practices. The Security category of Trusted Advisor provides recommendations for securing your AWS resources, including IAM, S3, and EC2 instances.

C. AWS Support: AWS Support provides technical support to AWS customers. While AWS Support can help with security issues, it is not a tool specifically designed for security assessment and compliance.

D. AWS Kinesis: This is a data streaming service that can help you process and analyze large amounts of data in real-time. While Kinesis can be used for security-related tasks, it is not a tool specifically designed for security assessment and compliance.

Therefore, the correct answers are A. AWS Inspector and B. AWS Trusted Advisor.