List of questions
Related questions
Question 27 - SCS-C01 discussion
A company’s information security team wants to analyze Amazon EC2 performance and utilization data in the near-real time for anomalies. A Sec Engineer is responsible for log aggregation. The Engineer must collect logs from all of the company’s AWS accounts in centralized location to perform the analysis.
How should the Security Engineer do this?
Log in to each account four te a day and filter the AWS CloudTrail log data, then copy and paste the logs in to the Amazon S3 bucket in the destination account.
A.
Set up Amazon CloudWatch to stream data to an Amazon S3 bucket in each source account. Set up bucket replication for each source account into a centralized bucket owned by the security Engineer.
B.
Set up an AWS Config aggregator to collect AWS configuration data from multiple sources.
C.
Set up an AWS config aggregator to collect AWS configuration data from multiple sources.
D.
Set up Amazon CloudWatch cross-account log data sharing with subscriptions in each account.Send the logs to Amazon Kinesis Data Firehose in the Security Engineer’s account.
Your answer:
0 comments
Sorted by
Leave a comment first