Home › AWS Solutions Architect Professional › cloudcomputing › sapcomplexity › An architect needs centralised security findings…
An architect needs centralised security findings (GuardDuty + Inspector + IAM Access Analyzer + Macie) across an entire AWS Organization. Which service aggregates them?
AAmazon GuardDuty alone
BDisabling cross-account roles
CAWS Security Hub (with Organization-wide enablement)
DAWS CloudTrail alone
Answer & Solution
Correct answer: C. AWS Security Hub (with Organization-wide enablement)
Security Hub aggregates findings across services + accounts. Individual services don't aggregate; disabling roles breaks management.
Related questions
An architect must give a third-party identity provider (e.g. Okta, Azure AD) federated accWhich AWS rightsizing visibility tool analyses Amazon EC2 + EBS + Lambda + Auto Scaling grAn enterprise wants to enforce 'no resources in eu-central-1' and 'no IAM users with adminWhich AWS purchasing option offers the deepest discount for steady-state compute usage witAn enterprise on SAP-C02 RTO/RPO design must recover a critical workload within 4 hours anWhich AWS service provides hybrid DNS by forwarding DNS queries between an on-prem resolveWhich AWS service lets one account share specific resources (e.g. Transit Gateway, subnetsAn enterprise needs a turnkey multi-account landing-zone with guardrails, account factory,