Crucial Exams

AWS Certified Data Engineer Associate DEA-C01 Practice Question

In a multi-account AWS environment managed by AWS Organizations, auditors must run ad-hoc SQL queries against the last 12 months of CloudTrail management and data events from every member account. The security team wants the simplest operational approach and does not want to build ETL pipelines or custom indexes. Which solution should a data engineer implement to satisfy these requirements?

  • Create an organization-level CloudTrail Lake event data store in the central logging account with 12-month retention, ingest activity from all member accounts, and run compliance SQL queries directly in CloudTrail Lake.

  • Deliver each account's CloudTrail trail to a central S3 bucket, register the bucket in the AWS Glue Data Catalog, and use Amazon Athena to run the required queries.

  • Enable CloudTrail Insights in every account, stream Insight events to CloudWatch Logs in the logging account, and analyze them with CloudWatch Logs Insights.

  • Send CloudTrail logs from all accounts to an Amazon OpenSearch Service domain and use the OpenSearch dashboard to search the events.

AWS Certified Data Engineer Associate DEA-C01
Data Security and Governance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot