ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your company operates several AWS accounts under AWS Organizations. The security policy states that every create, modify, or delete API call must be traceable to the exact IAM user or role that issued it, even if malicious admins try to erase local evidence. Which solution BEST enforces this accountability requirement?
Enable AWS Config in every member account and aggregate configuration snapshots into a central repository for the security team.
Schedule AWS Trusted Advisor to run weekly in each account and export the reports to the security team's account.
Create an organization-wide CloudTrail and store its logs in an S3 bucket owned by a dedicated security account with log file integrity validation enabled.
Turn on detailed CloudWatch monitoring for all services and forward the metrics to a centralized monitoring account.
AWS CloudTrail is the only service that records a complete audit trail of management-plane API calls, including the identity of the caller, time, source IP, and request parameters. Creating an organization trail that writes logs to an S3 bucket in a separate security account and enabling log file integrity validation prevents local administrators from disabling logging or altering records. AWS Config records resource configuration states, not all API calls. CloudWatch metrics provide performance data, not user-level audit details. Trusted Advisor offers best-practice recommendations but no detailed per-API audit trail.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS CloudTrail and how does it ensure accountability?
Open an interactive chat with Bash
How does log file integrity validation work in AWS CloudTrail?
Open an interactive chat with Bash
Why is AWS Config not sufficient for ensuring detailed API-level audits?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .