Amazon Exam SOA-C01 Topic 6 Question 12 Discussion

Actual exam question for Amazon's SOA-C01 exam

Question #: 12
Topic #: 6

An organization stores sensitive customer information in S3 buckets protected by bucket policies Recently, there have been reports that unauthorized entities within the company have been trying to access the data on those S3 buckets. The chief information security officer (CISO) would like to know which buckets are being targeted and determine who is responsible for trying to access that information.

Which steps should a SysOps administrator take to meet the CISO's requirement? (Select TWO.)

AEnable Amazon S3 Analytics on all affected S3 buckets to obtain a report of which buckets are being accessed without authorization.

BEnable Amazon S3 Server Access Logging on all affected S3 buckets and have the logs stored in a bucket dedicated for logs.

CUse Amazon Athena to query S3 Analytics reports for HTTP 403 errors, and determine the 1AM user or role making the requests.

DUse Amazon Athena to query the S3 Server Access Logs for HTTP 403 errors, and determine the 1AM user or role making the requests.

EUse Amazon Athena to query the S3 Server Access Logs for HTTP 503 errors, and determine the 1AM user or role making the requests.

Show Suggested Answer

Suggested Answer: B, D

by Valentine at May 05, 2022, 08:40 AM

Limited Time Offer

25%

Off

Get Premium SOA-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!