A company wants to migrate its accounting system from an on-premises data center to the AWS Cloud in a single AWS Region. Data security and an immutable audit log are the top priorities. The company must monitor all AWS activities for compliance auditing. The company has enabled AWS CloudTrail but wants to make sure it meets these requirements. Which actions should a solutions architect take to protect and secure CloudTrail? (Choose two.)
A) Enable CloudTrail log file validation.
B) Install the CloudTrail Processing Library.
C) Enable logging of Insights events in CloudTrail.
D) Enable custom logging from the on-premises resources.
E) Create an AWS Config rule to monitor whether CloudTrail is configured to use server-side encryption with AWS KMS managed encryption keys (SSE-KMS) .
Correct Answer:
Verified
Q559: A company hosts an application on AWS
Q560: A company wants to build a scalable
Q561: A company runs a fleet of web
Q562: A company has an application that uses
Q563: A company is creating a new application
Q565: A company has a large Microsoft SharePoint
Q566: A company is using a VPC that
Q567: A company operates a two-tier application for
Q568: A company is developing a file-sharing application
Q569: A company's security team requests that network
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents