🔥 3-day streak
AWS Certified DevOps Engineer - Professional191 / 204
Question 191 of 204

A financial services company aggregates AWS Security Hub findings across 40 accounts in a delegated administrator account. The security operations team wants a repeatable, auditable workflow: when an analyst reviews a HIGH or CRITICAL finding and decides it requires manual investigation, a ticket must be automatically created in their on-premises ITSM tool through its REST API, and the finding's workflow status must be updated. The solution must not automatically ticket every finding, only those an analyst explicitly selects, and it must be fully driven by infrastructure-as-code. Which approach meets these requirements with the least custom code?

Reviewed for accuracy · Report an issueNext question