Q453. A company runs several workloads on a mix of Amazon EC2 instances and Amazon RDS instances. The company is using an organization in AWS Organizations to manage multiple AWS accounts. The company's security standards require evaluation of AWS resources against the CIS Benchmarks and to automatically remediate issues where possible What should a solutions architect recommend to meet these requirements?
A.Enable AWS Config in all accounts in the organization Create an Amazon S3 bucket in an account within the organization to store the AWS Config compliance reports Deploy a conformance pack across the organization to implement the required CIS controls and remediation. B.Use AWS OpsWorks tor Chef Automate in all accounts in the organization Create an Amazon S3 bucket in an account within the organization Deploy Chef cookbooks to implement the required CIS controls to the EC2 instances and use OpsWorks for Chef Automate lo deploy the cookbooks C.Use AWS Systems Manager Configuration Compliance to scan compliance of the resources in AWS against the required CIS controlsUse Systems Manager Patch Manager lo apply any needed remediation on noncompliant EC2 instances Use AWS Lambda functions tor the other remediation on Amazon RDS D.Enable Amazon Inspector to audit the environment against the CIS controls ingest results from Amazon Inspector into AWS (Amazon CloudWatch Events) to schedule AWS Lambda functions to remediate issues.正确答案C