🔥 3-day streak
AWS Certified DevOps Engineer - Professional118 / 204
Question 118 of 204

A financial services company must enforce a compliance policy that requires all IAM user access keys to be rotated every 90 days across a single AWS account. The security team wants an automated, auditable mechanism that continuously detects access keys older than 90 days and automatically deactivates them without requiring engineers to write custom polling scripts or maintain long-running compute. Which solution best meets these requirements with the least operational overhead?

Reviewed for accuracy · Report an issueNext question