Amazon Web Services AWS Certified Security - Specialty SCS-C02 Question # 40 Topic 5 Discussion

SCS-C02 Exam Topic 5 Question 40 Discussion:

Question #: 40

Topic #: 5

A company is testing incident response procedures for destination containment. The company needs to contain a critical Amazon EC2 instance as quickly as possible while keeping the EC2 instance running. The EC2 instance is the only resource in a public subnet and has active connections to other resources.
Which solution will contain the EC2 instance IMMEDIATELY?

Create a new security group that has no inbound rules or outbound rules Attach the new security group to the EC2 instance.

Configure the existing security group for the EC2 instance Remove all existing inbound rules and outbound rules from the security group.

Create a new network ACL that has a single Deny rule for inbound traffic and outbound traffic Associate the new network ACL with the subnet that contains the EC2 instance.

Create a new VPC for isolation Stop the EC2 instance Create a new AMI from the EC2 instance Use the new AMI to launch a new EC2 instance in the new VPC.

Get Premium SCS-C02 Questions

Actual exam question for Amazon Web Services SCS-C02 exam by Rune7747 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Amazon Web Services AWS Certified Security - Specialty SCS-C02 Question # 40 Topic 5 Discussion

Amazon Web Services AWS Certified Security - Specialty SCS-C02 Question # 40 Topic 5 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Amazon Web Services AWS Certified Security - Specialty SCS-C02 Question # 40 Topic 5 Discussion

Amazon Web Services AWS Certified Security - Specialty SCS-C02 Question # 40 Topic 5 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval