The verified answer is A. AWS Audit Manager. The requirement is recurring compliance assessments with documented evidence mapped to regulatory frameworks. AWS documentation states that AWS Audit Manager helps customers continually audit AWS usage to simplify risk and compliance management. It automates evidence collection so customers can assess whether policies, procedures, and controls are operating effectively. AWS also states that Audit Manager provides prebuilt frameworks that structure and automate assessments for compliance standards and regulations.
The key phrase is “documented evidence mapped to regulatory frameworks.” AWS Audit Manager creates assessments from frameworks, automatically runs resource assessments, collects data from in-scope AWS accounts, transforms that data into audit-friendly evidence, and attaches it to relevant controls. That is the exact service function being tested. AWS also explains that Audit Manager can generate reports for auditors and supports prebuilt frameworks for standards such as PCI DSS, GDPR, HIPAA, SOC 2, and AWS operational best practices.
AWS Trusted Advisor is incorrect because Trusted Advisor provides recommendations for cost optimization, performance, security, fault tolerance, service quotas, and operational excellence. It is not a compliance-evidence automation service.
AWS Secrets Manager is incorrect because it stores, rotates, and manages secrets such as database credentials and API keys. It does not automate compliance assessments.
Amazon Inspector is incorrect because it scans workloads for software vulnerabilities and unintended network exposure. It is security-focused, but it does not create recurring evidence-mapped compliance assessments.
Therefore, the correct service is AWS Audit Manager.