ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 289 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 289
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A large company runs critical workloads in multiple AWS accounts. The AWS accounts are managed under AWS Organizations with all features enabled. The company stores confidential customer data in an Amazon S3 bucket. Access to the S3 bucket requires multiple levels of approval.

The company wants to monitor when the S3 bucket is accessed by using the AWS CLI. The company also wants insights into the various activities performed by other users on all other S3 buckets in the AWS accounts to detect any issues.

Which solution will meet these requirements?

  • A. Create an AWS CloudTrail trail that is delivered to Amazon CloudWatch in each AWS account. Enable data events logs for all S3 buckets. Use Amazon GuardDuty for anomaly detection in all the AWS accounts. Use Amazon Athena to perform SQL queries on the custom metrics created from the CloudTrail logs.
  • B. Create an AWS CloudTrail organization trail that is delivered to Amazon CloudWatch in the Organizations management account. Enable data events logs for all S3 buckets. Use Amazon CloudWatch anomaly detection in all the AWS accounts. Use Amazon Athena to perform SQL queries on the custom metrics created from the CloudTrail logs.
  • C. Create an AWS CloudTrail organization trail that is delivered to Amazon CloudWatch in the Organizations management account. Enable data events logs for all S3 buckets. Use Amazon CloudWatch anomaly detection in all the AWS accounts. Use Amazon CloudWatch Metrics Insights to perform SQL queries on the custom metrics created from the CloudTrail logs.
  • D. Create an AWS CloudTrail trail that is delivered to Amazon CloudWatch in each AWS account. Enable data events logs for all S3 buckets. Use a custom solution for anomaly detection in all the AWS accounts. Use Amazon CloudWatch Metrics Insights to perform SQL queries on the custom metrics created from the CloudTrail logs.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by teo2157 at Dec. 16, 2024, 12:18 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
jojewi8143
4 days, 13 hours ago
Selected Answer: C
Athena can only perform queries in S3 buckets, not in cloudwatch metrics.
upvoted 1 times
...
teo2157
1 week ago
Selected Answer: C
Athena can only permorm queries in S3 buckets, not in cloudwatch metrics. Based on that, it's C.
upvoted 2 times
...
Slays
1 month ago
Selected Answer: B
Athena allows for ad-hoc analysis of log data, enabling you to investigate specific events or trends without the need to set up complex data processing pipelines.
upvoted 1 times
...
matt200
1 month, 1 week ago
Selected Answer: C
Amazon CloudWatch Metrics Insights can perform SQL queries
upvoted 3 times
...
spring21
1 month, 3 weeks ago
Selected Answer: B
You have now set up an AWS CloudTrail organization trail that sends logs to CloudWatch, enabled anomaly detection on the CloudTrail logs, and configured Amazon Athena to query those logs with SQL. You can further optimize this setup by incorporating Lambda functions, setting more complex anomaly detection configurations, or using AWS Security Hub for better monitoring and automation.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago