Answer-first summary for fast verification
Answer: Amazon CloudWatch Logs
Amazon CloudWatch Logs is designed to collect and store logs from various AWS services, making it an ideal tool for centralizing and analyzing logs during incident response. CloudTrail is for API call logging, AWS Config for configuration history, and Amazon Elasticsearch Service is typically used for real-time search and analysis but not specifically for log centralization.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In the aftermath of a security breach, you need to validate events and identify the scope of the incident. Which AWS service would you use to centralize and analyze logs from various AWS services?
A
AWS CloudTrail
B
Amazon CloudWatch Logs
C
AWS Config
D
Amazon Elasticsearch Service
No comments yet.