Which actions should the company take to meet these requirements?
(Choose two.)
Use Amazon Inspector to submit the application for certification
Ensure that the application’s underlying hardware components comply with requirements
Use AWS Artifact to access AWS documents about the compliance of the services
Get the compliance of the application certified by a company assessor
Use AWS Security Hub to certify the compliance of the application
Explanations:
Amazon Inspector is used for assessing security vulnerabilities and not for certification or regulatory compliance verification.
AWS customers are not responsible for the compliance of underlying hardware; AWS manages hardware compliance under its shared responsibility model.
AWS Artifact provides access to compliance reports and documentation, helping companies validate that AWS services meet regulatory requirements.
A third-party assessor is often required to certify the application itself to ensure that it complies with credit card regulations.
AWS Security Hub provides security posture management but does not handle certification or proof of compliance for regulatory requirements.