ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company runs a customer-facing healthcare app on Amazon EC2 behind an Application Load Balancer. To meet HIPAA and audit requirements you will engage an external firm for a full-scope penetration test of production. Before any scanning starts or test accounts are created, which single action must you complete first to ensure the test is lawful and compliant with corporate policy and AWS rules?
Enable Amazon GuardDuty and AWS Security Hub to gather baseline findings before testing.
Submit a detailed penetration-testing request to AWS and obtain written authorization from AWS and executive management that specifies scope, methods, and schedule.
Deploy AWS Shield Advanced in front of the Application Load Balancer to limit potential disruption during testing.
Create temporary IAM administrator credentials for the external testers so they can immediately begin reconnaissance.
Penetration testing is an intrusive activity that can violate laws, acceptable-use policies, and cloud service terms if performed without consent. AWS allows self-service tests only for certain services and benign techniques; anything broader-such as a full-scope assessment of production EC2 behind an ALB-requires a formal penetration-testing request through AWS Support and explicit approval. Because the environment holds ePHI, HIPAA and internal policy also mandate executive authorization. Therefore, securing written approval from both AWS and the organization, with a clearly defined scope, methods, and schedule, is the indispensable first step. Creating privileged IAM accounts, enabling monitoring tools, or deploying DDoS protection are important but come after legal authorization is in place.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is written authorization necessary before penetration testing in AWS environments?
Open an interactive chat with Bash
What is the role of AWS Support in penetration testing approval?
Open an interactive chat with Bash
What services are eligible for self-service penetration testing on AWS?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Risk Identification, Monitoring and Analysis
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .