ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company is migrating several workloads to AWS and must prove ongoing compliance with both the CIS AWS Foundations Benchmark and PCI DSS. The security team wants a single managed service that automatically runs configuration checks across all AWS accounts and Regions, provides a real-time centralized dashboard showing pass/fail status for each control, and can forward findings to the corporate ticket-tracking system with minimal custom code. Which AWS service best satisfies these requirements?
AWS Security Hub includes built-in security standards such as the CIS AWS Foundations Benchmark and PCI DSS. When enabled across multiple accounts and Regions, it continuously runs automated configuration checks by using AWS Config rules, aggregates the results centrally, and displays each control's compliance status in a single dashboard. Security Hub can also integrate natively with Amazon EventBridge to route findings to ticketing or SOAR systems, enabling remediation workflows without extensive custom development.
AWS Config conformance packs can evaluate resources against specific rules, but they do not provide the same cross-account, multi-Region aggregation, prebuilt PCI reporting, or native finding forwarding features. AWS Trusted Advisor offers best-practice checks but does not map results directly to compliance standards or aggregate findings across accounts. AWS Artifact supplies downloadable audit reports and agreements but does not perform continuous technical checks of your environment.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS Security Hub and how does it support compliance with standards like CIS AWS Foundations Benchmark and PCI DSS?
Open an interactive chat with Bash
How does AWS Config and AWS Security Hub work together to enable automated compliance checks?
Open an interactive chat with Bash
What are the main differences between AWS Security Hub and AWS Trusted Advisor?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .