🔥 3-day streak
AWS Certified Security - Specialty54 / 157
Question 54 of 157
A security engineer manages GuardDuty for a production account. A vulnerability scanning tool the company owns runs weekly from an EC2 instance, generating recurring Recon:EC2/Portscan findings that are known and authorized. The security team wants to stop these specific benign findings from cluttering the console and from being forwarded to their SIEM via EventBridge, while ensuring GuardDuty continues to detect and report all other threats. What is the MOST appropriate action?
Reviewed for accuracy · Report an issueNext question