ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company hosts all corporate email in AWS using Amazon WorkMail. The security team must periodically run internal phishing simulations to measure user awareness without breaching external anti-spam rules or maintaining on-prem mail servers. Which solution best meets the requirement while staying entirely in AWS and providing metrics on opens and clicks?
Attach AWS WAF to the corporate VPN endpoint and create custom rules that inject mock phishing banners into user traffic.
Launch an EC2 instance running Postfix as an SMTP relay and send test messages through its public IP address.
Enable Amazon GuardDuty and rely on its threat intelligence feeds to generate phishing test emails and user-click reports.
Send the simulations with Amazon Simple Email Service in the same AWS account, using a configuration set that records open and click engagement events.
Amazon SES is a fully managed email platform that can send messages to internal recipients without rerouting through external relays. By creating a configuration set and enabling engagement tracking, the security team can capture delivery, open, and click events for each simulated phish. An EC2-based SMTP server would add operational overhead and still risk being listed by anti-spam services. GuardDuty analyzes CloudTrail, VPC Flow Logs, and DNS logs; it does not send email or track click events. AWS WAF protects HTTP workloads and cannot generate or monitor phishing messages. Therefore, using Amazon SES with engagement tracking is the most efficient, AWS-native way to run and measure phishing simulations.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Amazon SES, and how does it handle phishing simulations?
Open an interactive chat with Bash
What are configuration sets in Amazon SES, and how do they track engagement metrics?
Open an interactive chat with Bash
Why is launching an EC2 SMTP server for phishing simulations a less optimal choice compared to Amazon SES?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .