AmazonAmazon
SOA-C02 · Question #178
SOA-C02 Question #178: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #178. The question stem and answer options stay visible for context.
Submitted by omar99· Mar 30, 2026Security and Compliance
Question
A company monitors its account activity using AWS CloudTrail, and is concerned that some log files are being tampered with after the logs have been delivered to the account's Amazon S3 bucket. Moving forward, how can the SysOps Administrator confirm that the log files have not been modified after being delivered to the S3 bucket?
Options
- AStream the CloudTrail logs to Amazon CloudWatch Logs to store logs at a secondary location.
- BEnable log file integrity validation and use digest files to verify the hash value of the log file.
- CReplicate the S3 log bucket across regions, and encrypt log files with S3 managed keys.
- DEnable S3 server access logging to track requests made to the log bucket for security audits.
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#CloudTrail#Log File Integrity Validation#Data Integrity#Security Auditing