What should the solutions architect do to meet this requirement?

By:
In: SAA-C03
Tagged:
With: 2 Comments
A company is concerned about the security of its public web application due to recent web attacks.The application uses an Application Load Balancer (ALB).A solutions architect must reduce the risk of DDoS attacks against the application.

What should the solutions architect do to meet this requirement?

Add an Amazon Inspector agent to the ALB.

Configure Amazon Macie to prevent attacks.

Enable AWS Shield Advanced to prevent attacks.

Configure Amazon GuardDuty to monitor the ALB.

Explanations:

Amazon Inspector is primarily used for assessing security vulnerabilities in applications, not for DDoS protection.

Amazon Macie is designed for data privacy and protection, specifically for identifying sensitive data; it does not prevent DDoS attacks.

AWS Shield Advanced provides enhanced DDoS protection specifically designed to safeguard applications running on AWS, including those behind an ALB.

Amazon GuardDuty is a threat detection service that monitors for malicious activity, but it does not actively prevent DDoS attacks.

2026-03-15

2 Comments

  1. Teresa
    Author

    I figure that the answer is:
    Enable AWS Shield Advanced to prevent attacks.

  2. Jack
    Author

    I structure that the answer is:
    Enable AWS Shield Advanced to prevent attacks.

Leave a Reply

Your email address will not be published. Required fields are marked *

3 + eleven =