SEARCH
You are in browse mode. You must login to use MEMORY

   Log in to start


From course:

AWS Solution Architect

» Start this Course
(Practice similar questions for free)
Question:

A company is storing sensitive data in an Amazon S3 bucket. The company must log all activities for objects in the S3 bucket and must keep the logs for 5 years. The company's security team also must receive an email notification every time there is an attempt to delete data in the S3 bucket. Which combination of steps will meet these requirements MOST cost-effectively? (Choose three.) A. Configure AWS CloudTrail to log S3 data events. B. Configure S3 server access logging for the S3 bucket. C. Configure Amazon S3 to send object deletion events to Amazon Simple Email Service (Amazon SES). D. Configure Amazon S3 to send object deletion events to an Amazon EventBridge event bus that publishes to an Amazon Simple Notification Service (Amazon SNS) topic. E. Configure Amazon S3 to send the logs to Amazon Timestream with data storage tiering. F. Configure a new S3 bucket to store the logs with an S3 Lifecycle policy.

Author: Jorge Soroce



Answer:

Configure AWS CloudTrail to log S3 data events. Configure Amazon S3 to send object deletion events to an Amazon EventBridge event bus that publishes to an Amazon Simple Notification Service (Amazon SNS) topic. Configure a new S3 bucket to store the logs with an S3 Lifecycle policy.


0 / 5  (0 ratings)

1 answer(s) in total