AWS Certified Cloud Practitioner (CLF-C02) — Question 384

A company wants to use machine learning capabilities to analyze log data from its Amazon EC2 instances and efficiently conduct security investigations.

Which AWS service will meet these requirements?

Answer options

• A. Amazon Inspector
• B. Amazon QuickSight
• C. Amazon Detective - D Amazon GuardDuty

Correct answer: C

Explanation

Amazon Detective automatically collects and analyzes log data using machine learning, statistical analysis, and graph theory to help security teams conduct faster and more efficient investigations. While Amazon GuardDuty is used to detect threats and Amazon Inspector is used to scan for software vulnerabilities, Amazon Detective is specifically designed to visualize and investigate security findings. Amazon QuickSight is a business intelligence tool and is not intended for security log analysis or investigations.