312-40 Exam Dumps : EC-Council Certified Cloud Security Engineer (CCSE)

Microsoft Defender for Cloud is the service that can assist Georgia Lyman in detecting unusual activities within her organizational Azure account and creating alerts with severity levels.

Detection of Unusual Activities: Microsoft Defender for Cloud provides advanced threat protection, which includes the detection of unusual activities based on behavioral analytics and anomaly detection1.

Alert Creation: It allows the creation of custom alerts for unauthorized activities, which can be configured with specific severity levels to prioritize the investigation process1.

Severity Level Prioritization: The service enables setting severity levels for alerts, ensuring that high-priority issues are analyzed first and appropriate actions are taken in a timely manner2.

Monitoring and Management: With Microsoft Defender for Cloud, Georgia can view and manage the security posture of her Azure resources from a single centralized dashboard, making it easier to monitor and respond to potential threats1.

References:Microsoft Defender for Cloud is an integrated tool for Azure security management, providing threat protection, alerting, and security posture management across Azure services1. It is designed to help cloud security engineers like Georgia Lyman detect and respond to security threats effectively.

Amazon Simple Queue Service (Amazon SQS) supports server-side encryption (SSE) to protect the contents of messages in queues using SQS-managed encryption keys or keys managed in the AWS Key Management Service (AWS KMS).

Enable SSE on Amazon SQS: When you create a new queue or update an existing queue, you can enable SSE by selecting the option for server-side encryption.

Choose Encryption Keys: You can choose to use the default SQS-managed keys (SSE-SQS) or select a custom customer-managed key in AWS KMS (SSE-KMS).

Secure Data Transmission: With SSE enabled, messages are encrypted as soon as Amazon SQS receives them and are stored in encrypted form.

Decryption for Authorized Consumers: Amazon SQS decrypts messages only when they are sent to an authorized consumer, ensuring the security of the message contents during transit.

References:Amazon SQS provides server-side encryption to protect sensitive data in queues, using either SQS-managed encryption keys or customer-managed keys in AWS KMS1. This feature helps in meeting strict encryption compliance and regulatory requirements, making it suitable for scenarios where secure message transmission is critical12.