🔥 3-day streak
AWS Certified Security - Specialty63 / 184
Question 63 of 184

A security team manages a multi-account AWS Organization with workloads deployed across four Regions. They have enabled Amazon GuardDuty in all accounts and Regions via the organization delegated administrator. The compliance team now requires that all GuardDuty findings be automatically collected into a single account and Region for centralized correlation, long-term retention in S3, and cross-referencing during investigations, without writing custom polling code. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question