🔥 3-day streak
AWS Certified DevOps Engineer - Professional187 / 204
Question 187 of 204
A financial services company discovers during an audit that several Lambda functions and ECS tasks read database credentials from environment variables set at deployment time. The security team must remediate this so that credentials are never stored statically in task definitions or function configuration, are automatically rotated every 30 days, and any access to the credentials is captured in a centralized audit trail for compliance reporting. Which approach BEST meets all of these requirements?
Reviewed for accuracy · Report an issueNext question