🔥 3-day streak
AWS Certified Security - Specialty35 / 157
Question 35 of 157

During an incident, the security team confirms that an attacker obtained the master database credentials for a production Amazon Aurora cluster after gaining temporary access to an application server. The credentials are stored in AWS Secrets Manager and consumed by several ECS tasks. The team has already contained the attacker's access to the application server. For the eradication phase, they must rotate the compromised credentials with minimal application downtime and ensure the running tasks pick up the new secret automatically. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question