Crucial Exams

AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question

A company streams AWS CloudTrail management events from its production account to an existing CloudWatch Logs log group named ProdTrail. Security engineers need a solution that triggers an alert within 1 minute whenever a DeleteBucket API call is written to the log group. The alert must appear as a CloudWatch alarm and send an email through Amazon SNS. Which set of actions meets these requirements with the least operational overhead?

  • Create a metric filter on the ProdTrail log group with pattern { $.eventName = "DeleteBucket" }, publish it to a custom CloudWatch metric, and add a 1-minute CloudWatch alarm that notifies an SNS topic.

  • Configure an S3 event notification on the log bucket that invokes a Lambda function; have the function scan each log file for DeleteBucket events and publish a message to SNS.

  • Enable CloudTrail Insights on the trail and configure the trail to deliver Insight events to an SNS topic subscribed by the security team.

  • Create an EventBridge rule that matches DeleteBucket events from aws.s3 and sends them to an SNS topic; rely on EventBridge metrics for monitoring.

AWS Certified CloudOps Engineer Associate SOA-C03
Monitoring, Logging, Analysis, Remediation, and Performance Optimization
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot