Multiple Choice
A security team is responsible for reviewing AWS API call activity in the cloud environment for security violations. These events must be recorded and retained in a centralized location for both current and future AWS regions. What is the SIMPLEST way to meet these requirements?
A) Enable AWS Trusted Advisor security checks in the AWS Console, and report all security incidents for all regions.
B) Enable AWS CloudTrail by creating individual trails for each region, and specify a single Amazon S3 bucket to receive log files for later analysis.
C) Enable AWS CloudTrail by creating a new trail and applying the trail to all regions. Specify a single Amazon S3 bucket as the storage location.
D) Enable Amazon CloudWatch logging for all AWS services across all regions, and aggregate them to a single Amazon S3 bucket for later analysis.
Correct Answer:
Verified
Correct Answer:
Verified
Q69: A company uses identity federation to authenticate
Q70: A Security Engineer manages AWS Organizations for
Q71: The Development team receives an error message
Q72: A company has a VPC with several
Q73: A large corporation is creating a multi-account
Q75: The Security Engineer is managing a traditional
Q76: A company's Developers plan to migrate their
Q77: Auditors for a health care company have
Q78: An organization is using AWS CloudTrail, Amazon
Q79: During a recent security audit, it was