You have a three-tier web application with separate subnets for Web, Applications, and Database tiers. Your CISO suspects your application will be the target of malicious activity. You are tasked with notifying the security team in the event your application is port scanned by external systems.
Which two AWS Services cloud you leverage to build an automated notification system? (Choose two.)
A . Internet gateway
B . VPC Flow Logs
C . AWS CloudTrail
D . Lambda
E . AWS Inspector
Answer: CD
Explanation:
References: https://aws.amazon.com/blogs/security/how-to-receive-alerts-when-specific-apis-are-calledby-using-aws-cloudtrail-amazon-sns-and-aws-lambda/