AWS Certified SysOps Administrator – Associate — Question 42

A company is undergoing an external audit of its systems, which run wholly on AWS. A SysOps administrator must supply documentation of Payment Card Industry Data Security Standard (PCI DSS) compliance for the infrastructure managed by AWS.

Which set of actions should the SysOps administrator take to meet this requirement?

Answer options

• A. Download the applicable reports from the AWS Artifact portal and supply these to the auditors.
• B. Download complete copies of the AWS CloudTrail log files and supply these to the auditors.
• C. Download complete copies of the AWS CloudWatch logs and supply these to the auditors.
• D. Provide the auditors with administrative access to the production AWS account so that the auditors can determine compliance.

Correct answer: A

Explanation

The correct answer is A because AWS Artifact provides the necessary compliance reports that demonstrate PCI DSS compliance, which is what the auditors need. Options B and C involve log files that do not directly address compliance documentation, and option D is not advisable as it poses security risks and does not fulfill the requirement for documentation.