AWS Certified Security – Specialty — Question 60

An organization is using AWS CloudTrail, Amazon CloudWatch Logs, and Amazon CloudWatch to send alerts when new access keys are created. However, the alerts are no longer appearing in the Security Operations mail box.
Which of the following actions would resolve this issue?

Answer options

• A. In CloudTrail, verify that the trail logging bucket has a log prefix configured.
• B. In Amazon SNS, determine whether the ג€Account spend limitג€ has been reached for this alert.
• C. In SNS, ensure that the subscription used by these alerts has not been deleted.
• D. In CloudWatch, verify that the alarm threshold ג€consecutive periodsג€ value is equal to, or greater than 1.

Correct answer: C

Explanation

The correct answer is C because if the subscription for the alerts in SNS has been deleted, notifications will not be sent. Options A and B do not directly address the issue of alerts not being received, and option D relates to alarm settings rather than the alert subscription itself.