A manager informs the SOC that one or more RDS instances have been compromised and the SOC needs to make sure production RDS instances are NOT publicly accessible. Which action should the SOC take to follow security best practices?

QuestionsCategory: PCCSEA manager informs the SOC that one or more RDS instances have been compromised and the SOC needs to make sure production RDS instances are NOT publicly accessible. Which action should the SOC take to follow security best practices?
Admin Staff asked 3 months ago
A manager informs the SOC that one or more RDS instances have been compromised and the SOC needs to make sure production RDS instances are NOT publicly accessible.
Which action should the SOC take to follow security best practices?

A. Enable “AWS S3 bucket is publicly accessible” policy and manually remediate each alert.

B. Enable “AWS RDS database instance is publicly accessible” policy and for each alert, check that it is a production instance, and then manually remediate.

C. Enable “AWS S3 bucket is publicly accessible” policy and add policy to an auto-remediation alert rule.

D. Enable “AWS RDS database instance is publicly accessible” policy and add policy to an auto-remediation alert rule.








 

Suggested Answer: D

Community Answer: B



This question is in PCCSE Palo Alto Networks Certified Cloud Security Engineer Exam
For getting Palo Alto Networks Certified Cloud Security Engineer (PCCSE) Certificate




Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks. 
Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks.
The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.

Recommended

Welcome Back!

Login to your account below

Create New Account!

Fill the forms below to register

Retrieve your password

Please enter your username or email address to reset your password.