AWS Certified Security – Specialty — Question 174
A company has a forensic logging use case whereby several hundred applications running on Docker on EC2 need to send logs to a central location. The Security
Engineer must create a logging solution that is able to perform real-time analytics on the log files, grants the ability to replay events, and persists data.
Which AWS Services, together, can satisfy this use case? (Choose two.)
Answer options
- A. Amazon Elasticsearch
- B. Amazon Kinesis
- C. Amazon SQS
- D. Amazon CloudWatch
- E. Amazon Athena
Correct answer: A, B
Explanation
Amazon Elasticsearch provides the necessary capabilities for real-time analytics on log data, while Amazon Kinesis allows for streaming and processing of logs in real time. The other options, such as Amazon SQS and Amazon CloudWatch, do not fully meet the combined requirements of real-time analytics, event replay, and data persistence.