🔥 3-day streak
AWS Certified Security - Specialty135 / 157
Question 135 of 157

A security engineer must continuously evaluate all AWS accounts in an organization against a recognized configuration baseline (such as password policy, root account MFA, and disabled public S3 access) and receive an ongoing compliance score with pass/fail status for each control. The solution should require minimal custom development and automatically re-evaluate resources as configuration changes occur. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question