AWS Cloud Governance, Compliance, and Risk Auditing Services
Question
Which of the following services helps in governance, compliance, and risk auditing in AWS?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - B.
The AWS Documentation mentions the following:
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.
With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure.
CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.
This event history simplifies security analysis, resource change tracking, and troubleshooting.
For more information on AWS CloudTrail, please refer to the below URL:
https://aws.amazon.com/cloudtrail/The correct answer is B. AWS CloudTrail.
AWS CloudTrail is a service that provides governance, compliance, and risk auditing for AWS accounts. It logs, monitors, and retains account activity related to actions taken within AWS services. This includes API calls made by users, applications, and services.
AWS CloudTrail captures events such as who made the API call, when it was made, and what resources were affected by the action. It also tracks changes to AWS resources, such as creating, modifying, or deleting EC2 instances, S3 buckets, or security groups.
By enabling AWS CloudTrail, customers can ensure compliance with regulatory requirements and company policies by auditing changes made to their AWS environment. It helps to identify unauthorized access or activities, and provides visibility into resource usage and operational activity.
AWS CloudFormation is a service for provisioning and managing AWS infrastructure resources, such as EC2 instances and S3 buckets. It is not specifically designed for governance, compliance, and risk auditing.
AWS CloudWatch is a service for monitoring AWS resources, such as EC2 instances, RDS databases, and Lambda functions. While it provides visibility into resource usage and performance, it is not focused on governance, compliance, and risk auditing.
AWS SNS (Simple Notification Service) is a service for sending notifications or messages to multiple subscribers or endpoints. It is not related to governance, compliance, and risk auditing in AWS.
Therefore, the correct answer is B. AWS CloudTrail.
