AWS Certified Developer – Associate (DVA-C02) — Question 462

A company hosts applications on premises. The on-premises servers generate audit logs that are available through an HTTP endpoint.

The company needs an automated solution to regularly ingest and store large volumes of audit data from the on-premises servers. The company also needs to perform queries on the audit data.

Which solution will meet these requirements in the MOST operationally efficient way?

Answer options

• A. Export the audit logs. Upload the logs to Amazon S3. Import the logs to an Amazon RDS DB instance.
• B. Create an AWS Lambda function to call the HTTP endpoint to fetch audit logs. Configure an Amazon EventBridge scheduled rule to invoke the Lambda function. Configure the Lambda function to push the logs to AWS CloudTrail Lake.
• C. Use AWS DataSync to transfer audit logs to an Amazon S3 bucket. Load the logs into an Amazon S3 bucket. Use Amazon Athena to query the bucket.
• D. Install the Amazon CloudWatch agent on the on-premises servers. Give the agent the ability to push audit logs to CloudWatch. Use CloudWatch Insights to query the logs.

Correct answer: C

Explanation

AWS DataSync is the most efficient service for automating the transfer of large volumes of on-premises data to Amazon S3. Once the logs are in S3, Amazon Athena provides a serverless, highly scalable way to query the log files directly using standard SQL without the overhead of managing databases. Other options like Amazon RDS introduce unnecessary database administration, AWS Lambda faces execution timeout limits when processing large datasets, and CloudWatch is less cost-effective for long-term storage and querying of massive volumes of raw audit logs.