A company is preparing for an annual compliance audit. The auditor requests a copy of the AWS SOC 2 Type II report to review AWS's controls. Which AWS service or tool can the company use to obtain this report?
Trap 1: AWS Config
AWS Config is a service that evaluates your AWS resource configurations against desired policies. It does not provide access to AWS compliance reports; it helps you audit your own resource configurations.
Trap 2: AWS Trusted Advisor
AWS Trusted Advisor provides recommendations to help you follow AWS best practices in areas such as cost optimization, performance, security, and fault tolerance. It does not provide compliance reports.
Trap 3: AWS Security Hub
AWS Security Hub aggregates security findings from multiple AWS services and third-party tools, enabling you to automate security checks. It does not provide direct access to AWS compliance reports.
- A
AWS Config
Why wrong: AWS Config is a service that evaluates your AWS resource configurations against desired policies. It does not provide access to AWS compliance reports; it helps you audit your own resource configurations.
- B
AWS Artifact
AWS Artifact is the correct service. It is a self-service portal for on-demand access to AWS compliance reports and agreements. This allows customers to download reports like SOC 2 Type II directly.
- C
AWS Trusted Advisor
Why wrong: AWS Trusted Advisor provides recommendations to help you follow AWS best practices in areas such as cost optimization, performance, security, and fault tolerance. It does not provide compliance reports.
- D
AWS Security Hub
Why wrong: AWS Security Hub aggregates security findings from multiple AWS services and third-party tools, enabling you to automate security checks. It does not provide direct access to AWS compliance reports.