AWS Certified SysOps Administrator – Associate (legacy) — Question 685

As part of an operational audit, an Administrator is tasked with showing that all security responsibilities under the customer's control are properly executed.
Which of the following items is the customer responsible for providing to the auditor? (Choose two.)

Answer options

• A. Physical data center access logs
• B. AWS CloudTrail logs showing API calls
• C. Amazon EC2 instance system logs
• D. Storage device destruction records
• E. Xen Hypervisor system logs

Correct answer: C, D

Explanation

Under the shared responsibility model, the customer is fully responsible for securing and maintaining the operating system of their virtual machines, making Amazon EC2 instance system logs (Option C) a customer obligation to provide. In specific compliance and hybrid architectures, maintaining records of storage device destruction (Option D) is also managed by the customer for their own hardware or encrypted volumes. Conversely, AWS manages physical data center access, the underlying Xen Hypervisor, and physical AWS media decommissioning, meaning the customer is not responsible for providing those logs.