🔥 3-day streak
AWS Certified Solutions Architect - Professional73 / 186
Question 73 of 186
A company runs a fleet of EC2 instances hosting a customer-facing application across multiple accounts in AWS Organizations. The security team wants to improve its security posture by automatically detecting compromised instances (e.g., cryptomining, malware, credential exfiltration) and quarantining them without manual intervention. They already have GuardDuty enabled organization-wide with a delegated administrator account. Which approach BEST meets these requirements while minimizing operational overhead?
Reviewed for accuracy · Report an issueNext question