Examtopics

AWS Certified Security - Specialty

146
148

Topic 1 Question 147
A security engineer needs to build a solution to turn AWS CloudTrail back on in multiple AWS Regions in case it is ever turned off.

What is the MOST efficient way to implement this solution?
- Use AWS Config with a managed rule to initiate the AWS-EnableCloudTrail remediation.
- Create an Amazon EventBridge event with a cloudtrail.amazonaws.com event source and a StartLogging event name to invoke an AWS Lambda function to call the StartLogging API.
- Create an Amazon CloudWatch alarm with a cloudtrail.amazonaws.com event source and a StopLoggmg event name to invoke an AWS Lambda function to call the StartLogging API.
- Monitor AWS Trusted Advisor to ensure CloudTrail logging is enabled.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: A
  https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/automatically-re-enable-aws-cloudtrail-by-using-a-custom-remediation-rule-in-aws-config.html
  
  👍 6
  Certified1012024/05/19
- 正解だと思う選択肢: A
  The correct answer is A. The most efficient way to implement this solution is to use AWS Config with a managed rule to initiate the AWS-EnableCloudTrail remediation. This will automatically turn AWS CloudTrail back on if it is ever turned off.
  
  👍 2
  Certified1012024/05/19
- 正解だと思う選択肢: A
  The "most efficient" solution is A.
  
  👍 1
  navid13652024/07/29
シャッフルモード

146
148