{"id":36,"date":"2021-01-04T08:08:35","date_gmt":"2021-01-04T08:08:35","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question029\/"},"modified":"2021-01-04T08:08:35","modified_gmt":"2021-01-04T08:08:35","slug":"aws-certified-security-specialty-scs-c01-question029","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question029\/","title":{"rendered":"AWS Certified Security – Specialty SCS-C01 – Question029"},"content":{"rendered":"
A security team is responsible for reviewing AWS API call activity in the cloud environment for security violations. These events must be recorded and retained in a centralized location for both current and future AWS regions.
\nWhat is the SIMPLEST way to meet these requirements?

A.<\/strong> Enable AWS Trusted Advisor security checks in the AWS Console, and report all security incidents for all regions.
B.<\/strong> Enable AWS CloudTrail by creating individual trails for each region, and specify a single Amazon S3 bucket to receive log files for later analysis.
C.<\/strong> Enable AWS CloudTrail by creating a new trail and applying the trail to all regions. Specify a single Amazon S3 bucket as the storage location.
D.<\/strong> Enable Amazon CloudWatch logging for all AWS services across all regions, and aggregate them to a single Amazon S3 bucket for later analysis.<\/div>\n

<\/p>\n