AWS Certified Security - Specialty SCS-C02 Exam QuestionsBrowse all questions from this exam
Go to Exam

AWS Certified Security - Specialty SCS-C02 Exam - Question 11

A company wants to receive an email notification about critical findings in AWS Security Hub. The company does not have an existing architecture that supports this functionality.

Which solution will meet the requirement?

Show Answer
Correct Answer: C

To receive an email notification about critical findings in AWS Security Hub, create an Amazon EventBridge rule that detects these critical findings. Then, create an Amazon Simple Notification Service (SNS) topic as the target of the EventBridge rule. Finally, subscribe an email endpoint to the SNS topic to receive the published messages. This approach leverages AWS's event-driven architecture efficiently.

Discussion

17 comments
Sign in to comment
jabilrn
Oct 20, 2023

I think C is right. I dont believe SES can be the target for Eventbridge

Daniel76Option: C
Nov 18, 2023

To filter for critical only finding: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cwe-all-findings.html

Raphaello
Feb 10, 2024

SecurityHub >>EventBridge >>SNS. { "source": ["aws.securityhub"], "detail-type": ["Security Hub Findings - Imported"], "detail": { "findings": {"Severity": {"Label": ["Critical"]}} } }

Anonymous
Mar 25, 2024

D - Eventbridge is essentially like SNS in this example -'Amazon Simple Notification Service (SNS) and Amazon EventBridge are both AWS services that help with data processing and messaging [of events.]' So then working directly with SMS is more efficient. And YES Eventbridge CAN work with SMS with just the same amount of effort but one less step of redundancy.

Just_Ninja
May 18, 2024

It´s not well architected. "C is better" The Way SecurityHub >>EventBridge >>SNS is better, option D suggests using Amazon SES directly, which is not the most straightforward or typical approach for this use case. EventBridge and SNS together offer a more integrated and native solution for sending notifications from AWS Security Hub.

FunkyFrescoOption: C
Aug 21, 2024

C option.

KR693
Oct 24, 2023

Option C

pupsikOption: C
Oct 26, 2023

EventBridge Rule -> SNS -> Email delivery

lalee2Option: C
Oct 29, 2023

EventBridge -> SNS is right

[Removed]Option: C
Oct 31, 2023

C is right

Karamen
Nov 1, 2023

C is right. confirmed

YR4591Option: C
Nov 16, 2023

C is right securityhub > eventbridge > sns

Raphaello
Dec 14, 2023

C SES? Seriously?

3633f8fOption: C
Dec 15, 2023

Marked D is defenitely wrong

trashbox
Dec 19, 2023

Exam on 2023-12-18

Anonymous
Mar 21, 2024

D. Indeed you can 'To subscribe an email address to an Amazon SNS topic using the AWS Management Console'

helloworldabc
Sep 23, 2024

just C

habrosOption: C
Aug 10, 2024

C is soooo much quicker… no need for complicatedresources if all the administrator wants to find out who is responsibleand toalert them

c6ed25aOption: C
Mar 23, 2025

SNS and eventbridge is the hint