AWS Certified SysOps Administrator – Associate (legacy) — Question 576

A company is concerned about a security vulnerability impacting its Linux operating system.
What should the SysOps Administrator do to alleviate this concern?

Answer options

• A. Patch the vulnerability with Amazon Inspector.
• B. Provide an AWS Trusted Advisor report showing which Amazon EC2 instances have been patched.
• C. Redeploy the Amazon EC2 instances using AWS CloudFormation.
• D. Patch the Linux operating system using AWS Systems Manager.

Correct answer: D

Explanation

AWS Systems Manager Patch Manager is designed to automate the process of patching managed instances with both security-related and other types of updates. Amazon Inspector is a vulnerability assessment service that identifies security issues but does not remediate them, and AWS Trusted Advisor does not provide OS-level patching reports. While AWS CloudFormation can redeploy resources, it does not inherently patch existing operating systems unless a newly updated AMI is specified.