ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your organization operates about 300 Amazon EC2 instances across several AWS accounts. Security policy mandates that, every quarter, you must produce a consolidated report of all software installed on the instances and verify that usage stays within purchased license entitlements. The solution must minimize manual effort and automatically alert when a license threshold is breached. Which approach best meets these requirements?
Rely on AWS Trusted Advisor checks for service limits and security best practices to identify installed software and license over-use.
Create custom AWS Config rules that analyze CloudTrail logs to detect software installation events and email alerts when installations exceed licensed quantities.
Deploy Amazon Macie to scan S3 buckets and generate periodic reports on discovered software and related license usage.
Enable AWS Systems Manager Inventory on all EC2 instances and integrate its data with AWS License Manager to track entitlements and configure automated alerts.
AWS Systems Manager Inventory can be enabled on managed instances to collect detailed metadata, including installed applications and their versions. The inventory data is stored in AWS Systems Manager and can be aggregated across multiple AWS accounts and Regions with Resource Data Sync, creating the required consolidated report with little manual effort. By integrating the collected inventory with AWS License Manager, you can define licensing rules, track license consumption, and configure automatic notifications when usage exceeds entitlements. Amazon Macie focuses on data classification in S3, Trusted Advisor does not enumerate installed software or track licenses, and custom AWS Config rules parsing CloudTrail logs would require extensive custom development and still not capture package-level inventory or license counts reliably. Therefore, using AWS Systems Manager Inventory together with AWS License Manager is the most efficient and comprehensive solution.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS Systems Manager Inventory?
Open an interactive chat with Bash
How does AWS License Manager work with Systems Manager Inventory?
Open an interactive chat with Bash
Why is Amazon Macie not suitable for tracking installed software and licenses?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .