A company's security analyst detected a malware ( Remote Access Tool ) on some instances that run web servers and are in an Auto Scaling group that maintains at least other 2 0 instances No data is stored on those web servers, and while the Incident Forensics team analyzes how they got in , the security analyst wants to automate the rebuild of any compro mised instance to ensure that the malware was removed How would you suggest to proceed ( Choose three ) A Run an antimalware software scan to remove the malware B Enable Amazon GuardDuty, and configure an Amazon CloudWatch Events rule to trigger a Run command execution to reinstall the web server C Enable Amazon GuardDuty, and configure an Amazon CloudWatch Events rule to trigger the termination of the instance when Remote Access Tools are detected D Use host intrusion prevention systems from the partners in the marketplace to harden the instances E Use AWS Systems Manager Patch Manager to patch the instances

The Answer is in the image, click to view ...

Question: A company's security analyst detected a malware ( Remote Access Tool ) on some instances that run web servers and are in an Auto Scaling

A company's security analyst detected a malware

(

Remote Access Tool

)

on some instances

that run web servers and are in an Auto Scaling group that maintains at least other

20

instances. No data is stored on those web servers, and while the Incident Forensics team

analyzes how they got in

,

the security analyst wants to automate the rebuild of any compro

-

mised instance to ensure that the malware was removed. How would you suggest to proceed?

(

Choose three.

)

.

Run an antimalware software scan to remove the malware.

.

Enable Amazon GuardDuty, and configure an Amazon CloudWatch Events rule to trigger a Run command execution to reinstall the web server.

.

Enable Amazon GuardDuty, and configure an Amazon CloudWatch Events rule to trigger the termination of the instance when Remote Access Tools are detected.

.

Use host intrusion prevention systems from the partners in the marketplace to harden

the instances.

.

Use AWS Systems Manager Patch Manager to patch the instances

A company's security analyst detected a malware (Remote Access Tool) on

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

ITM 309: Business Information Technology and Systems Spring 2016 Watson and the new era of cognitive systems Jerry Haan IBM Cloud Ecosystem Development January 27, 2016 2013 International Business...

GRADUATE CERTIFICATE IN PROJECT MANAGEMENT PROJ5010: PROJECT PROCUREMENT AND STRATEGIC SOURCING. CASE STUDIES CONTENTS 1. Proj5010: The World Bank RFP Case Study covers 1. Assignment 1: Marks = 5 2....

Please help me answer this question Background Veronese 81 Tiffany Inc. is a medium-sized business located in Elmira, Ontario. It sells designerjewelry to specialty stores through Canada as well as...

Based on the article above, answer the following question. 1.What makes ransomware like NotPetya extremely dangerous? 2.What maybe the major motive(s) for its deployment? 3.What makes even big...

For the exclusive use of K. Camara, 2023. HEC130 ijcsm INTERNATIONAL Volume 14 JOURNAL OF CASE STUDIES Issue 1 IN MANAGEMENT March 2016 Autopsy of a Data Breach: The Target Case Case, 2 prepared by...

For the exclusive use of S. Setiawan, 2015. 9-910-036 REV: APRIL 11, 2011 BENJAMIN EDELMAN THOMAS R. EISENMANN Go oogle In nc. Go oogle's mission is to organize the world's inf n nformation and make...

For the exclusive use of F. Ortolano, 2015. 9-910-036 REV: APRIL 11, 2011 BENJAMIN EDELMAN THOMAS R. EISENMANN Go oogle In nc. Go oogle's mission is to organize the world's inf n nformation and make...

I have to create a program in C and I can't figure it out. The program has to read a source file. Please help. /******************************************************************** PROJECT: Glossary...

What steps did the cybercriminals follow in committing the theft? What factors allowed this theft to take place? What are the consequences of the breach to different stakeholders? What are your...

I need a 10 page paper for my MIS class. Please do not copy and paste as my school is getting stricter on plagiarism. I have attached the assignment and the sample \fData Analytic Thinking 1 Data...

In 2013, the Marion Company purchased land containing a mineral mine for $1,600,000. Additional costs of $600,000 were incurred to develop the mine. Geologists estimated that 400,000 tons of ore...

Assuming that costs for other colleges are the same as for the College of Business (an unrealistic assumption; law and medicine probably have higher costs), what is the total cost forthe two...

The appropriate section in the statement of cash flows for reporting the borrowing of money by issuing long term debt is

A proposed new investment has projected sales of $640,000. Variable costs are 35 percent of sales, and fixed costs are $171,000; depreciation is $84,000. Assume a tax rate of 21 percent What is the...

KEY QUESTION Explain the general meaning of the following profit payoff matrix for oligopolists C and D. All profit figures are in thousands. a. Use the payoff matrix to explain the mutual...

KEY QUESTION Answer the following questions, which relate to measures of concentration: a. What is the meaning of a four-firm concentration ratio of 60 percent? 90 percent? What are the shortcomings...

KEY QUESTION It has been proposed that natural monopolists should be allowed to determine their profit-maximizing outputs and prices and then government should tax their profits away and distribute...