During a security incident, you need to capture forensics data from a compromised EC2 instance. Which AWS services and features would you use to ensure the integrity and availability of the forensic data? Describe the process.

Simulated

Use Amazon EBS snapshots and S3 Object Lock for immutable storage.

25.0%

Create a memory dump and store it in an S3 bucket with S3 Lifecycle policies.

0.0%

Take an EBS snapshot and replicate it to another region using S3 replication.

25.0%

Store the forensic data in an isolated forensic account and use S3 Object Lock for immutability.

50.0%

AWS Certified Security - Specialty