Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question
Your organization is expanding and now consists of multiple departments, each with its own dedicated cloud account. The security team needs to perform audits on storage containers located in these various accounts. Which approach would streamline permissions management and allow the necessary access?
Set up a centralized identity service that the security team uses to authenticate directly into each department's cloud services.
Create a role in each department's account with the right to audit the storage containers, and grant the central security audit team the ability to assume this role.
Implement network peering to allow the security team's account unrestricted access to access storage across all departments.
Onboard each security team member as a user into every department's account and grant them individual permissions to audit storage.
