SCS-C02 Domain 4: Infrastructure Security

A team must protect web apps from OWASP Top 10. Which option meets the requirement?

Multiple choice — select one answer

Answer choices

  1. a. EC2 Image Builder CIS benchmarks
  2. b. AWS WAF managed rule groups
  3. c. S3 Block Public Access at account level
  4. d. AWS Shield and Route 53 routing policies

Architectural breakdown & explanation

Managed rules address common attacks.

Correct answer(s): b. AWS WAF managed rule groups

Exam domain: Domain 4: Infrastructure Security (17% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Security – Specialty bank. Run a full timed practice exam with domain-weighted random questions in your browser.