exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 147 discussion

A security engineer needs to build a solution to turn AWS CloudTrail back on in multiple AWS Regions in case it is ever turned off.

What is the MOST efficient way to implement this solution?

  • A. Use AWS Config with a managed rule to initiate the AWS-EnableCloudTrail remediation.
  • B. Create an Amazon EventBridge event with a cloudtrail.amazonaws.com event source and a StartLogging event name to invoke an AWS Lambda function to call the StartLogging
    API.
  • C. Create an Amazon CloudWatch alarm with a cloudtrail.amazonaws.com event source and a StopLoggmg event name to invoke an AWS Lambda function to call the StartLogging API.
  • D. Monitor AWS Trusted Advisor to ensure CloudTrail logging is enabled.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Certified101
Highly Voted 6 months, 2 weeks ago
Selected Answer: A
https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/automatically-re-enable-aws-cloudtrail-by-using-a-custom-remediation-rule-in-aws-config.html
upvoted 5 times
...
PegasusForever
Most Recent 3 months, 1 week ago
Selected Answer: C AWS-EnableCloudTrail -> Create an AWS CloudTrail trail and configure logging to an S3 bucket not re-enabled for that we require an AWS Config Custom Rule, not listed. MOST Efficient C. Create an Amazon CloudWatch alarm with a cloudtrail.amazonaws.com event source and a StopLoggmg event name to invoke an AWS Lambda function to call the StartLogging API. B is wrong.
upvoted 1 times
...
xTrayusx
4 months ago
Selected Answer: A
To efficiently turn AWS CloudTrail back on in multiple AWS Regions if it is ever turned off, the best approach is to use AWS Config with a managed rule to automatically remediate the situation.
upvoted 1 times
...
navid1365
4 months, 1 week ago
Selected Answer: A
The "most efficient" solution is A.
upvoted 1 times
...
Certified101
6 months, 2 weeks ago
Selected Answer: A
The correct answer is A. The most efficient way to implement this solution is to use AWS Config with a managed rule to initiate the AWS-EnableCloudTrail remediation. This will automatically turn AWS CloudTrail back on if it is ever turned off.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...