Exclude certain resources from control

The task we face involves managing a control, specifically "enable VPC flow logs," which is currently not performing as expected. This issue arises because we have a significant number of VPCs that are dynamically created and deleted, and these VPCs shouldn't be equipped with VPC flow logs.

While we can't fully exclude these resources using tags, as they require monitoring for other aspects, we need a strategy to selectively exempt them from the VPC flow logs control.

How might we achieve this exclusion effectively?