SCS-C02 Domain 1: Detection

An audit found gaps: the organization must detect threats in Kubernetes. Which option addresses this? detect threats in Kubernetes.

Multiple choice — select one answer

Answer choices

  1. a. GuardDuty IAM anomaly findings
  2. b. CloudTrail data events and Macie
  3. c. GuardDuty Malware Protection
  4. d. GuardDuty EKS Protection

Architectural breakdown & explanation

EKS Protection analyzes audit logs.

Correct answer(s): d. GuardDuty EKS Protection

Exam domain: Domain 1: Detection (18% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Security – Specialty bank. Run a full timed practice exam with domain-weighted random questions in your browser.