🔥 3-day streak
AWS Certified CloudOps Engineer - Associate133 / 159
Question 133 of 159
A CloudOps engineer is asked to continuously evaluate whether the company's AWS accounts follow established security best practices, such as ensuring root account MFA is enabled and that no security groups allow unrestricted SSH access. Leadership wants a managed set of prescriptive controls with automated pass/fail scoring rather than writing individual detective rules from scratch. Which approach BEST meets this requirement with the least custom development?
Reviewed for accuracy · Report an issueNext question