Security (Test) Flashcards
What is AWS Config?
AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.
What is AWS Inspector?
Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure.
What is AWS Trusted Advisor?
AWS Trusted Advisor provides recommendations that help you follow AWS best practices. Trusted Advisor evaluates your account by using checks. These checks identify ways to optimize your AWS infrastructure, improve security and performance, reduce costs, and monitor service quotas.
What is AWS Cloud Formation?
AWS CloudFormation lets you model, provision, and manage AWS and third-party resources by treating infrastructure as code.
Think forming a template
When can you change the security group for an instance?
When it is running or in a stopped state
What is Amazon Macie?
Amazon Macie is a managed security service which can be used to detect personally identifiable information (PII) such as names, password, Credit card numbers from large amounts of data stored in Amazon S3 bucket.
What is Amazon Guard Duty?
Amazon GuardDuty is a threat detection service that continuously monitors malicious activities and unauthorized behaviors to protect your AWS accounts, workloads, and data stored in Amazon S3.
