Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 11 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 11
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A company wants to receive an email notification about critical findings in AWS Security Hub. The company does not have an existing architecture that supports this functionality.
Which solution will meet the requirement?

  • A. Create an AWS Lambda function to identify critical Security Hub findings. Create an Amazon Simple Notification Service (Amazon SNS) topic as the target of the Lambda function. Subscribe an email endpoint to the SNS topic to receive published messages.
  • B. Create an Amazon Kinesis Data Firehose delivery stream. Integrate the delivery stream with Amazon EventBridge. Create an EventBridge rule that has a filter to detect critical Security Hub findings. Configure the delivery stream to send the findings to an email address.
  • C. Create an Amazon EventBridge rule to detect critical Security Hub findings. Create an Amazon Simple Notification Service (Amazon SNS) topic as the target of the EventBridge rule. Subscribe an email endpoint to the SNS topic to receive published messages.
  • D. Create an Amazon EventBridge rule to detect critical Security Hub findings. Create an Amazon Simple Email Service (Amazon SES) topic as the target of the EventBridge rule. Use the Amazon SES API to format the message. Choose an email address to be the recipient of the message.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by 100fold at Oct. 19, 2023, 4:06 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
FunkyFresco
1 month, 2 weeks ago
Selected Answer: C
C option.
upvoted 2 times
...
habros
1 month, 3 weeks ago
Selected Answer: C
C is soooo much quicker… no need for complicatedresources if all the administrator wants to find out who is responsibleand toalert them
upvoted 1 times
...
hro
6 months, 2 weeks ago
D - Eventbridge is essentially like SNS in this example -'Amazon Simple Notification Service (SNS) and Amazon EventBridge are both AWS services that help with data processing and messaging [of events.]' So then working directly with SMS is more efficient. And YES Eventbridge CAN work with SMS with just the same amount of effort but one less step of redundancy.
upvoted 2 times
Just_Ninja
4 months, 3 weeks ago
It´s not well architected. "C is better" The Way SecurityHub >>EventBridge >>SNS is better, option D suggests using Amazon SES directly, which is not the most straightforward or typical approach for this use case. EventBridge and SNS together offer a more integrated and native solution for sending notifications from AWS Security Hub.
upvoted 1 times
...
...
hro
6 months, 2 weeks ago
D. Indeed you can 'To subscribe an email address to an Amazon SNS topic using the AWS Management Console'
upvoted 1 times
helloworldabc
1 week, 6 days ago
just C
upvoted 1 times
...
...
Raphaello
7 months, 4 weeks ago
SecurityHub >>EventBridge >>SNS. { "source": ["aws.securityhub"], "detail-type": ["Security Hub Findings - Imported"], "detail": { "findings": {"Severity": {"Label": ["Critical"]}} } }
upvoted 2 times
...
trashbox
9 months, 3 weeks ago
Exam on 2023-12-18
upvoted 1 times
...
3633f8f
9 months, 3 weeks ago
Selected Answer: C
Marked D is defenitely wrong
upvoted 1 times
...
Raphaello
9 months, 3 weeks ago
C SES? Seriously?
upvoted 1 times
...
Daniel76
10 months, 3 weeks ago
Selected Answer: C
To filter for critical only finding: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cwe-all-findings.html
upvoted 2 times
...
YR4591
10 months, 3 weeks ago
Selected Answer: C
C is right securityhub > eventbridge > sns
upvoted 1 times
...
Karamen
11 months, 1 week ago
C is right. confirmed
upvoted 1 times
...
[Removed]
11 months, 1 week ago
Selected Answer: C
C is right
upvoted 1 times
...
lalee2
11 months, 1 week ago
Selected Answer: C
EventBridge -> SNS is right
upvoted 1 times
...
pupsik
11 months, 2 weeks ago
Selected Answer: C
EventBridge Rule -> SNS -> Email delivery
upvoted 1 times
...
KR693
11 months, 2 weeks ago
Option C
upvoted 1 times
...
jabilrn
11 months, 3 weeks ago
I think C is right. I dont believe SES can be the target for Eventbridge
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel