SCS-C02 Domain 4: Infrastructure Security

Which service should you use to protect web apps from OWASP Top 10?

Multiple choice — select one answer

Answer choices

  1. a. EC2 Image Builder CIS benchmarks
  2. b. AWS WAF managed rule groups
  3. c. AWS Shield and Route 53 routing policies
  4. d. Private endpoint and restricted public access CIDRs

Architectural breakdown & explanation

Managed rules address common attacks.

Correct answer(s): b. AWS WAF managed rule groups

Exam domain: Domain 4: Infrastructure Security (17% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Security – Specialty bank. Run a full timed practice exam with domain-weighted random questions in your browser.