How should the SysOps Administrator ensure this compliance requirement is met, while still permitting Developers to create and use new S3 buckets?

Posted by: Pdfprep Category: SOA-C01 Tags: AWS Certified SysOps Administrator - Associate, SOA-C01 exam questions, SOA-C01 practice exam Post Date: February 6, 2021

A company’s Auditor implemented a compliance requirement that all Amazon S3 buckets must have logging enabled.

How should the SysOps Administrator ensure this compliance requirement is met, while still permitting Developers to create and use new S3 buckets?
A . Add AWS CloudTrail logging for the S3 buckets.
B . Implement IAM policies to allow only the Storage team to create S3 buckets.
C . Add the AWS Config managed rule S3_BUCKET_LOGGING_ENABLE
E . Create an AWS Lambda function to delete the S3 buckets if logging is not turned on.

Answer: C

How should the SysOps Administrator ensure this compliance requirement is met, while still permitting Developers to create and use new S3 buckets?

Author

Leave a Reply Cancel reply