AWS Certified SysOps Administrator – Associate (legacy) — Question 58

A company has deployed a new application running on Amazon EC2 instances. The application team must verify for the Security team that all common vulnerabilities and exposures have been addressed, both now and regularly throughout the application's lifespan.
How can the Application team satisfy the Security team's requirement?

Answer options

• A. Perform regular assessments with Amazon Inspector
• B. Perform regular assessments with AWS Trusted Advisor
• C. Integrate AWS Personal Health Dashboard with Amazon CloudWatch events to get security notifications
• D. Grant the Administrator and Security team access to AWS Artifact

Correct answer: A

Explanation

The correct answer is A because Amazon Inspector is specifically designed to automatically assess applications for vulnerabilities and deviations from best practices. Options B, C, and D do not focus on vulnerability assessments; AWS Trusted Advisor provides operational best practices, while the Personal Health Dashboard and AWS Artifact deal with notifications and compliance documents, respectively.