🔥 3-day streak
AWS Certified Security - Specialty14 / 157
Question 14 of 157
A security team manages compliance across a 200-account AWS Organization using a delegated administrator account for AWS Config. They deploy an organization conformance pack that includes a managed rule with automatic remediation to disable public S3 access. One member account hosts a legitimately public static website bucket that must remain accessible and should not be evaluated by this rule at all. The team wants to keep the conformance pack deployed org-wide with remediation active everywhere else, while ensuring the website account is not affected. What is the most operationally efficient way to achieve this?
Reviewed for accuracy · Report an issueNext question