🔥 3-day streak
AWS Certified Security - Specialty44 / 184
Question 44 of 184

A company has been growing organically and now runs 40 AWS accounts that were each created independently using the AWS Organizations 'create account' and 'invite existing account' features. There is no consistent baseline: some accounts lack CloudTrail, encryption defaults vary, and there is no standardized logging or audit account. Leadership wants a governed, repeatable way to provision NEW accounts going forward with a mandatory baseline (centralized logging, guardrails, standardized VPC) and a dashboard showing drift across all accounts, while minimizing custom-built automation. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question