A company manages a set of accounts on flaws by using flaws Organizations. The company's security team wants to use a native flaws service to regularly scan all flaws accounts against the Center for Internet Security (CIS) flaws Foundations Benchmark. What is the MOST operationally efficient way to meet these requirements? A. Designate a central security account as the flaws Security Hub administrator account. Create a script that sends an invitation from the Security Hub administrator account and accepts the invitation from the member account. Run the script every time a new account is created. Configure Security Hub to run the CIS flaws Foundations Benchmark scans. B. Run the CIS flaws Foundations Benchmark across all accounts by using Amazon Inspector. C. Designate a central security account as the Amazon GuardDuty administrator account. Create a script that sends an invitation from the GuardDuty administrator account and accepts the invitation from the member account. Run the script every time a new account is created. Configure GuardDuty to run the CIS flaws Foundations Benchmark scans. D. Designate an flaws Security Hub administrator account. Configure new accounts in the organization to automatically become member accounts. Enable CIS flaws Foundations Benchmark scans. Â Correct Answer: D This question is in SOA-C02 exam For getting AWS Certified SysOps Administrator - Associate
Please login or Register to submit your answer
