Which AWS service can the company use to meet these requirements?
AWS Trusted Advisor
Amazon Inspector
AWS Config
Amazon GuardDuty
Explanations:
AWS Trusted Advisor provides insights into best practices and recommendations for AWS accounts, focusing on cost optimization, performance, security, fault tolerance, and service limits. However, it does not specifically assess application vulnerabilities or identify infrastructure deployments.
Amazon Inspector is designed to automatically assess applications for vulnerabilities and deviations from best practices. It analyzes the behavior of applications running on EC2 instances and provides detailed findings regarding security vulnerabilities and compliance.
AWS Config monitors the configurations of AWS resources and assesses compliance with best practices. While it is valuable for compliance management, it does not directly assess application vulnerabilities or provide detailed security assessments like Amazon Inspector does.
Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior within AWS accounts. While it enhances security by identifying threats, it does not focus on assessing application vulnerabilities or compliance with infrastructure best practices.