A security engineer needs to build a solution to turn AWS CloudTrail back on in multiple AWS Regions in case it is ever turned off. What is the MOST efficient way to implement this solution?
A) Use AWS Config with a managed rule to trigger the AWS-EnableCloudTrail remediation.
B) Create an Amazon EventBridge (Amazon CloudWatch Events) event with a cloudtrail.amazonaws.com event source and a StartLogging event name to trigger an AWS Lambda function to call the StartLogging API.
C) Create an Amazon CloudWatch alarm with a cloudtrail.amazonaws.com event source and a StopLogging event name to trigger an AWS Lambda function to call the StartLogging API.
D) Monitor AWS Trusted Advisor to ensure CloudTrail logging is enabled.
Correct Answer:
Verified
Q265: A company is developing an ecommerce application.
Q266: A company uses AWS CodePipeline for its
Q267: Auditors for a health care company have
Q268: A Security Engineer has several thousand Amazon
Q269: An application has been written that publishes
Q271: An organization has a multi-petabyte workload that
Q272: A public subnet contains two Amazon EC2
Q273: A security engineer has noticed an unusually
Q274: An application is running on an Amazon
Q275: A large government organization is moving to
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents