Multiple Choice
A Security Analyst attempted to troubleshoot the monitoring of suspicious security group changes. The Analyst was told that there is an Amazon CloudWatch alarm in place for these AWS CloudTrail log events. The Analyst tested the monitoring setup by making a configuration change to the security group but did not receive any alerts. Which of the following troubleshooting steps should the Analyst perform?
A) Ensure that CloudTrail and S3 bucket access logging is enabled for the Analyst's AWS account. B Verify that a metric filter was created and then mapped to an alarm. Check the alarm notification action.
B) Check the CloudWatch dashboards to ensure that there is a metric configured with an appropriate dimension for security group changes.
C) Verify that the Analyst's account is mapped to an IAM policy that includes permissions for cloudwatch: GetMetricStatistics and Cloudwatch: ListMetrics.
Correct Answer:
Verified
Correct Answer:
Verified
Q134: A company has two AWS accounts, each
Q135: A company is building a data lake
Q136: A Security Engineer is implementing a solution
Q137: A pharmaceutical company has digitized versions of
Q138: The Accounting department at Example Corp. has
Q140: A company runs an application on AWS
Q141: Which option for the use of the
Q142: During a security event, it is discovered
Q143: A company is developing a mobile shopping
Q144: An external auditor finds that a company's