Happy to Announce Our New Discussion Forum | Join Now

WhizQuiz Oct 29th, 2018

Which of the following is not a best practice for carrying out a security audit?

  • A. Conduct an audit on a yearly basis
  • B. Conduct an audit if application instances have been added to your account
  • C. Conduct an audit if you ever suspect that an unauthorized person might have accessed your account
  • D. Whenever there are changes in your organization

0 voters

Hi All,
Below we have the link that provides guidelines for Security Audit by AWS.
https://docs.aws.amazon.com/general/latest/gr/aws-security-audit-guide.html#aws-security-audit-guide-when-to-audit

Thanks

1 Like

Hi there…!

The Correct Answer is Option A. Because If we see the question, we have to select the Option that is not a best practice for carrying out a security audit.

In AWS Documentation they mentioned Security Audit Guidelines:

When Should You Perform a Security Audit?

You should audit your security configuration in the following situations:

  • On a periodic basis. You should perform the steps described in this document at regular intervals as a best practice for security.
  • If there are changes in your organization, such as people leaving.
  • If you have stopped using one or more individual AWS services. This is important for removing permissions that users in your account no longer need.
  • If you’ve added or removed software in your accounts, such as applications on Amazon EC2 instances, AWS OpsWorks stacks, AWS CloudFormation templates, etc.
  • If you ever suspect that an unauthorized person might have accessed your account.

For the Quick review, Please find the below AWS Docs Link:
https://docs.aws.amazon.com/general/latest/gr/aws-security-audit-guide.html#aws-security-audit-guide-when-to-audit

As always I say, Feedback is welcome:)

cheers…!

A is the Right Answer

A year’s time is generally too long a gap for conducting security audits.

The AWS Documentation mentions the following

You should audit your security configuration in the following situations:

  • On a periodic basis.
  • If there are changes in your organization, such as people leaving.
  • If you have stopped using one or more individual AWS services. This is important for removing permissions that users in your account no longer need.
  • If you’ve added or removed software in your accounts, such as applications on Amazon EC2 instances, AWS OpsWorks stacks, AWS CloudFormation templates, etc.
  • If you ever suspect that an unauthorized person might have accessed your account.

Option B is invalid because conducting audit when new instances are added to your account is a good security practice.

Option C is invalid because if you feel unauthorized access is occured for your account , then by all means conduct a security audit.

Option D is invalid because whenever there are any sort of changes in an organization , you should conduct a security audit.

For more information on Security Audit guideline, please visit the below URL

https://docs.aws.amazon.com/general/latest/gr/aws-security-audit-guide.html

So, The correct answer is: Conduct an audit on a yearly basis

1 Like