AWS Certified Data Engineer - Associate

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Use AWS CloudTrail to log all API calls and Amazon Macie to identify and protect sensitive data.

AWS CloudTrail is used to log all API calls, which includes access to Amazon S3. Amazon Macie is used to identify and protect sensitive data, ensuring that all access to sensitive data is logged and monitored, thus meeting compliance requirements.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Use AWS CloudTrail to log all API calls and Amazon Macie to identify and protect sensitive data.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

Your company has implemented a data governance policy that requires logging all access to sensitive data stored in Amazon S3. Which AWS services would you use to achieve this, and how would you configure them to meet the compliance requirements?

Simulated

Last updated: January 28, 2026 at 14:03

Use AWS CloudTrail to log all API calls and Amazon Macie to identify and protect sensitive data.

52.9%

Use Amazon CloudWatch to monitor access patterns and AWS CloudTrail to log all API calls.

17.6%

Use Amazon GuardDuty to detect unauthorized access and AWS CloudTrail to log all API calls.

11.8%

Use AWS Config to track resource changes and Amazon Macie to identify and protect sensitive data.

17.6%