ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
A company hosts all development workloads in a single AWS account. The security team wants to send developers a short list of secure-coding tips every Monday at 09:00 and allow individual recipients to opt out. The solution must rely only on AWS-managed services, require minimal ongoing administration, and keep costs low. Which approach best meets these requirements?
Enable AWS GuardDuty and configure it to forward all findings to an Amazon SNS topic; include the secure-coding tips in the SNS message template sent to developers.
Set up an AWS Config managed rule that triggers weekly; configure the rule's compliance notifications to e-mail all developers with the desired tips.
Configure AWS Systems Manager State Manager to run a command on all EC2 instances every Monday that writes the secure-coding tips to the login banner (motd) of each instance.
Create an Amazon EventBridge rule with a cron expression that runs every Monday at 09:00 and publishes a predefined message to an Amazon SNS topic; have developers subscribe to the topic by e-mail so they can opt out if desired.
Using an Amazon EventBridge (formerly CloudWatch Events) rule with a cron schedule provides a fully managed, no-maintenance way to trigger an action at 09:00 every Monday. Setting the rule's target to an Amazon SNS topic lets the rule publish the reminder text (supplied in the rule's constant JSON input). Developers subscribe to the topic with their corporate e-mail addresses and can unsubscribe at any time, satisfying the opt-out requirement. This design uses only managed services and incurs charges only for the small number of EventBridge invocations and SNS e-mails.
Systems Manager State Manager (distractor 2) delivers messages to instances rather than developers' mailboxes and does not support self-service unsubscribe. AWS Config rules (distractor 3) evaluate resource compliance; they are not intended for sending scheduled awareness messages. GuardDuty findings (distractor 4) are event-driven and cannot guarantee delivery of weekly tips, nor do they provide an unsubscribe mechanism for individual users.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Amazon EventBridge and how does it work?
Open an interactive chat with Bash
How does Amazon SNS support subscriptions and opt-outs?
Open an interactive chat with Bash
Why is Systems Manager State Manager not ideal for this solution?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .