🔥 3-day streak
AWS Certified DevOps Engineer - Professional133 / 204
Question 133 of 204

A DevOps team runs an automated incident-response workflow: an EventBridge rule matches CloudTrail management events for security-group ingress changes and invokes a Lambda function that reverts non-compliant rules. During a recent audit, the team found that some non-compliant rule additions were reverted several minutes late, and a few were never reverted at all. CloudWatch Logs show the Lambda function was invoked far fewer times than the number of AuthorizeSecurityGroupIngress API calls recorded in CloudTrail. The EventBridge rule pattern and Lambda IAM permissions are confirmed correct. What is the MOST likely root cause of the missed and delayed remediations?

Reviewed for accuracy · Report an issueNext question