Consolidate Operational and Security Issues for AWS Resources
Question
A global Pharma firm has deployed multiple three-tier applications on AWS resources in the eu-central-1 region.A new Operations Team has been formed to remediate and investigate all operational and security issues for these AWS resources.
The Operations Director is looking to consolidate operational & security issues in a single place that can facilitate operations teams in their daily work.
Also, senior management would like to have a report for operational and security issues across all AWS resources & accounts. Which services can be used to meet this requirement?(Select THREE.)
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E. F.Correct Answers: B, E and F.
AWS Security Hub centralizes and security findings from across AWS services and accounts.
These findings can be sent to AWS System Manager OpsCenter, where security issues can be consolidated for investigation and resolution along with operational issues.
AWS Systems Manager uses Explorer as a reporting hub displaying all operational and security issues summary and trends.
AWS Systems Manager uses OpsCenter to diagnose and resolve all security and operational findings.
Option A is incorrect as AWS Security Hub findings need to be sent to AWS Systems Manager OpsCenter, not AWS Systems Manager Incident Manager.
Option C is incorrect as AWS Systems Manager OpsCenter is used to diagnose and resolve operational and security issues, not for reporting.
Option D is incorrect as AWS Systems Manager Explorer is a reporting hub showing the aggregated summary of operational and security issues.
For more information on the integration of AWS Security Hub with AWS Systems Manager, refer to the following URLs,
https://aws.amazon.com/security-hub/faqs/ https://docs.aws.amazon.com/systems-manager/latest/userguide/opscenter-securityhub-integration.htmlThe Operations Director of a global Pharma firm wants to consolidate operational and security issues of their AWS resources in a single place and generate reports for senior management. To achieve this goal, the following AWS services can be used:
A. Configure AWS Security Hub findings to be sent to AWS Systems Manager Incident Manager using Amazon EventBridge: AWS Security Hub provides a comprehensive view of the security posture of the AWS environment by aggregating, organizing, and prioritizing security alerts from various AWS services, third-party products, and custom tools. AWS Systems Manager Incident Manager is a remediation orchestration service that automates and tracks incident response workflows. Amazon EventBridge is an event bus service that makes it easy to connect various AWS services, SaaS applications, and custom applications using events. By configuring AWS Security Hub findings to be sent to AWS Systems Manager Incident Manager using Amazon EventBridge, the Operations Team can automate the remediation process of security issues and generate incident reports for senior management.
B. Configure AWS Security Hub findings to be sent to AWS Systems Manager OpsCenter using Amazon EventBridge: AWS Systems Manager OpsCenter is a central console to view, investigate, and resolve operational issues. By configuring AWS Security Hub findings to be sent to AWS Systems Manager OpsCenter using Amazon EventBridge, the Operations Team can investigate and resolve security issues from a single console.
C. Use AWS Systems Manager OpsCenter to view reports consisting of an aggregated summary of operations and security data: AWS Systems Manager OpsCenter provides a central console to view, investigate, and resolve operational and security issues. It also provides pre-built and custom reports to generate insights into the environment. The Operations Team can use AWS Systems Manager OpsCenter to view reports consisting of an aggregated summary of operations and security data.
D. Use AWS Systems Manager Explorer to diagnose and resolve all security and operational findings: AWS Systems Manager Explorer provides a single console to view and resolve operational issues across AWS resources and accounts. It also provides a summary of AWS resources, inventory, and compliance data. However, it does not provide security issue remediation workflows.
E. Use AWS Systems Manager OpsCenter to diagnose and resolve all security and operational findings: AWS Systems Manager OpsCenter provides a central console to view, investigate, and resolve operational and security issues. The Operations Team can use AWS Systems Manager OpsCenter to diagnose and resolve all security and operational findings.
F. Use AWS Systems Manager Explorer to view reports consisting of aggregated summary of operations and security data: AWS Systems Manager Explorer provides a single console to view and resolve operational issues across AWS resources and accounts. It also provides pre-built and custom reports to generate insights into the environment. However, it does not provide security issue remediation workflows.
Therefore, the three correct options to consolidate operational and security issues in a single place and generate reports for senior management are A, B, and C.
