A Developer reported that AWS CloudTrail was disabled on their account. A Security Engineer investigated the account and discovered the event was undetected by the current security solution. The Security Engineer must recommend a solution that will detect future changes to the CloudTrail configuration and send alerts when changes occur.
What should the Security Engineer do to meet these requirements?
A . Use AWS Resource Access Manager (AWS RAM) to monitor the AWS CloudTrail configuration. Send notifications using Amazon SN
C . Create an Amazon CloudWatch Events rule to monitor Amazon GuardDuty findings.
Send email notifications using Amazon SN
E . Update security contact details in AWS account settings for AWS Support to send alerts when suspicious activity is detected.
F . Use Amazon Inspector to automatically detect security issues. Send alerts using Amazon SN
Answer: A
Leave a Reply