AWS Certified Security – Specialty (SCS-C02) — Question 294

A security engineer has created an Amazon GuardDuty detector in several AWS accounts. The accounts are in an organization in AWS Organizations. The security engineer needs centralized visibility of the security findings from the detectors.

Which solution will meet this requirement?

Answer options

• A. Configure Amazon CloudWatch Logs Insights.
• B. Create an Amazon CloudWatch dashboard.
• C. Configure AWS Security Hub integrations.
• D. Query the findings by using Amazon Athena.

Correct answer: C

Explanation

AWS Security Hub provides a comprehensive, centralized view of security alerts and compliance status across multiple AWS accounts by natively integrating with Amazon GuardDuty to aggregate its findings. While options like Amazon CloudWatch and Amazon Athena can process and query log data, they require manual pipelines, custom queries, or complex dashboard setups rather than offering a direct, out-of-the-box centralized visibility solution.