During a security incident, you need to capture relevant forensics data from a compromised resource. Describe the steps you would take using Amazon EBS volume snapshots and memory dumps, and how you would ensure the integrity of this data using AWS services.

Simulated

Create EBS snapshots and memory dumps, store them in a standard S3 bucket, and use S3 Lifecycle policies.

0.0%

Create EBS snapshots and memory dumps, store them in an isolated forensic account, and use S3 Object Lock.

100.0%

Create EBS snapshots and memory dumps, replicate them to another region using S3 replication, and use S3 Object Lock.

0.0%

Create EBS snapshots and memory dumps, store them in an S3 Glacier bucket, and use S3 Object Lock.

0.0%

AWS Certified Security - Specialty