AWS Certified Cloud Practitioner (CLF-C02) — Question 341

A company is migrating to the AWS Cloud. The company wants to understand and identify potential security misconfigurations or unexpected behaviors. The company wants to prioritize any protective controls it might need.

Which AWS Cloud Adoption Framework (AWS CAF) security perspective capability will meet these requirements?

Answer options

• A. Identity and access management
• B. Threat detection
• C. Platform engineering
• D. Availability and continuity management

Correct answer: B

Explanation

The Threat detection capability within the AWS CAF security perspective focuses on understanding and identifying unexpected behaviors or security misconfigurations, allowing organizations to prioritize protective controls. Identity and access management is centered on managing user permissions and credentials, while Platform engineering and Availability and continuity management deal with infrastructure templates and system resilience, respectively.