ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 207 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 207
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A company needs to detect unauthenticated access to its Amazon Elastic Kubernetes Service (Amazon EKS) clusters. The company needs a solution that requires no additional configuration of the existing EKS deployment.

Which solution will meet these requirements with the LEAST operational effort?

  • A. Install an Amazon EKS add-on from a security vendor.
  • B. Enable AWS Security Hub. Monitor the Kubernetes findings.
  • C. Monitor Amazon CloudWatch Container Insights metrics for Amazon EKS.
  • D. Enable Amazon GuardDuty. Use EKS Audit Log Monitoring.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by asdf1234567 at Nov. 1, 2024, 8:50 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
IPLogic
4 months, 2 weeks ago
Selected Answer: D
The best solution to detect unauthenticated access to Amazon EKS clusters with the least operational effort is: D. Enable Amazon GuardDuty. Use EKS Audit Log Monitoring. Amazon GuardDuty provides comprehensive security monitoring for EKS clusters, including the ability to detect unauthenticated access attempts. It requires minimal configuration and integrates seamlessly with existing EKS deployments.
upvoted 1 times
IPLogic
4 months, 2 weeks ago
Option C (Monitor Amazon CloudWatch Container Insights metrics for Amazon EKS) is not the best choice for detecting unauthenticated access because: Limited Scope: CloudWatch Container Insights primarily focuses on performance metrics and operational health of the EKS clusters, such as CPU and memory usage, rather than security-specific events like unauthenticated access attempts. No Direct Detection: It does not provide direct detection or alerts for security incidents, including unauthorized access. You would need to set up additional custom metrics and alarms, which increases operational effort. In contrast, Amazon GuardDuty with EKS Audit Log Monitoring is specifically designed to detect and alert on security-related events, including unauthorized access, with minimal configuration required.
upvoted 1 times
...
...
rhsilva
5 months, 1 week ago
Selected Answer: D
https://aws.amazon.com/blogs/security/how-to-detect-security-issues-in-amazon-eks-clusters-using-amazon-guardduty-part-1/
upvoted 1 times
...
mzeynalli
5 months, 1 week ago
Selected Answer: D
NOT C! CloudWatch Container Insights provides metrics and monitoring for performance but is not ideal for detecting unauthenticated access. It does not provide threat detection capabilities directly related to unauthorized attempts.
upvoted 1 times
...
siheom
5 months, 2 weeks ago
Selected Answer: D
VOTE D
upvoted 1 times
...
asdf1234567
5 months, 3 weeks ago
Selected Answer: C
CloudWatch Container Insights can be a helpful part of detecting unauthenticated access attempts in an Amazon EKS cluster.
upvoted 1 times
asdf1234567
5 months, 3 weeks ago
Unfortunately, my initial thought may not fit the question here as it would require installing the agent on the cluster.
upvoted 1 times
asdf1234567
5 months, 3 weeks ago
Should be "D" per the information below AWS GuardDuty can meet the requirement of monitoring for unauthorized or suspicious access to your Amazon EKS cluster without requiring configuration changes to the EKS cluster itself. GuardDuty is designed to detect security threats across AWS services, including EKS, and operates independently of the cluster’s configuration, making it an ideal choice for monitoring without intrusively altering your setup.
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago