exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam

Exam AWS Certified Security - Specialty topic 1 question 85 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 85
Topic #: 1
[All AWS Certified Security - Specialty Questions]

For compliance reasons, an organization limits the use of resources to three specific AWS regions. It wants to be alerted when any resources are launched in unapproved regions.
Which of the following approaches will provide alerts on any resources launched in an unapproved region?

  • A. Develop an alerting mechanism based on processing AWS CloudTrail logs.
  • B. Monitor Amazon S3 Event Notifications for objects stored in buckets in unapproved regions.
  • C. Analyze Amazon CloudWatch Logs for activities in unapproved regions.
  • D. Use AWS Trusted Advisor to alert on all resources being created.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
josellama2000
Highly Voted 3 years, 9 months ago
A is correct. More.... You can now turn on a trail across all regions for your AWS account. CloudTrail will deliver log files from all regions to the Amazon S3 bucket and an optional CloudWatch Logs log group you specified. Additionally, when AWS launches a new region, CloudTrail will create the same trail in the new region. As a result, you will receive log files containing API activity for the new region without taking any action. https://aws.amazon.com/about-aws/whats-new/2015/12/turn-on-cloudtrail-across-all-regions-and-support-for-multiple-trails/
upvoted 37 times
...
Ayusef
Highly Voted 3 years, 8 months ago
Its A.. for sure. I have actually done this on the job. I had developers sand boxed and used Cloud Trail to alert when developers create resources outside of the approved region. I even added Lamda to auto roll back if it was done.
upvoted 8 times
...
Raphaello
Most Recent 1 year, 4 months ago
Selected Answer: A
The service that audits multi-region: CloudTrail.
upvoted 1 times
...
ITGURU51
2 years, 1 month ago
Centralized logging is considered an AWS best practice. A
upvoted 1 times
...
Cr4zyd34thg0d
2 years, 7 months ago
I would have like led C but, the fact that it says “some sort of alerting a” for answer A makes it more correct. Normally I would set up CloudWatch alerts for metrics which can be assumed by the statement in answer A. A is the answer.
upvoted 2 times
...
maddyr
2 years, 7 months ago
A is my answer
upvoted 1 times
...
dcasabona
2 years, 11 months ago
Selected Answer: C
I go with option C. ClouldTrail seems to be a possible answer but it more used for investigation purposes. With Cloudwatch one can create de alerts and send notifications with SNS topic easily. With CloudTrail, you would need to create Athena queries, it sound much more complicated and not timely effective.
upvoted 2 times
...
ceros399
3 years, 3 months ago
Selected Answer: A
A - is the only possible ans
upvoted 3 times
...
proton007
3 years, 4 months ago
Selected Answer: A
Consensus is A
upvoted 3 times
...
sanjaym
3 years, 8 months ago
Ans: A
upvoted 3 times
...
durmusc
3 years, 8 months ago
Ans : A
upvoted 2 times
...
NANDY666
3 years, 8 months ago
A is Correct
upvoted 1 times
...
devjava
3 years, 8 months ago
Ans > A
upvoted 1 times
...
AfricanCloudGuru
3 years, 8 months ago
Ans(A) https://aws.amazon.com/blogs/security/easier-way-to-control-access-to-aws-regions-using-iam-policies/
upvoted 2 times
sapien45
2 years, 10 months ago
That link has nothing to do with A. or BCD for that matter. useless
upvoted 1 times
...
...
Scrubsboy
3 years, 8 months ago
D is correct!! we're not gonna develop an alerting mechanism
upvoted 3 times
rip72
3 years, 8 months ago
Trusted Advisor will run a report on the current config. It will not continuously monitor so cannot raise an alert when something is changed.
upvoted 1 times
...
...
PeppaPig
3 years, 8 months ago
A is correct. A trail in a single region can apply for all other regions.
upvoted 4 times
...
echo_cert
3 years, 8 months ago
A for sure! Reason: Question says approaches that will provide ALERTS. B and C says monitor and analyse D alerts for everything created not just for things created in the unauthorised regions
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...