🔥 3-day streak
AWS Certified Security - Specialty100 / 157
Question 100 of 157
A large enterprise runs 200 accounts in AWS Organizations. The central security team operates entirely from a dedicated Security account (not the management account). Company policy mandates that the management account should be used only for billing and organization structure changes, and no security operators should have credentials in it. The team needs to administer GuardDuty, Security Hub, and IAM Access Analyzer across the whole organization from the Security account. What is the MOST appropriate way to enable this while adhering to the policy?
Reviewed for accuracy · Report an issueNext question