Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Certified Associate
  5. SOA-C03 Discussions
  6. SOA-C03 Exam Topic 5 Question 49 Discussion

Amazon Web Services AWS Certified CloudOps Engineer - Associate SOA-C03 Question # 49 Topic 5 Discussion

 Amazon Web Services Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous

Amazon Web Services AWS Certified CloudOps Engineer - Associate SOA-C03 Question # 49 Topic 5 Discussion

SOA-C03 Exam Topic 5 Question 49 Discussion:
Question #: 49
Topic #: 5

A company hosts an FTP server on EC2 instances. AWS Security Hub sends findings to Amazon EventBridge when the FTP port becomes publicly exposed in attached security groups.

A CloudOps engineer needs an automated, event-driven remediation solution to remove public access from security groups.

Which solution will meet these requirements?
A.

Configure the existing EventBridge event to stop the EC2 instances that have the exposed port.

B.

Create a cron job for the FTP server to invoke an AWS Lambda function. Configure the Lambda function to modify the security group of the identified EC2 instances and to remove the instances that allow public access.

C.

Create a cron job for the FTP server that invokes an AWS Lambda function. Configure the Lambda function to modify the server to use SFTP instead of FTP.

D.

Configure the existing EventBridge event to invoke an AWS Lambda function. Configure the function to remove the security group rule that allows public access.

Get Premium SOA-C03 Questions
Actual exam question for Amazon Web Services SOA-C03 exam by Zephyr90391 at Feb 28, 2026, 8:47:38 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous