ExpertMinds LogoExpertMinds
Easy1 markMultiple Choice
Domain 3.1: Operational ExcellenceSecurityAthenaLogging

AWS SAP-C02 · Question 40 · Domain 3.1: Operational Excellence

A security team is investigating a potential breach. They need to analyze VPC Flow Logs, AWS CloudTrail logs, and Amazon Route 53 DNS logs across 50 AWS accounts. The logs are currently stored in a centralized Amazon S3 bucket in a dedicated Security account. The team needs to query this massive dataset using standard SQL without provisioning any infrastructure. Which service should they use?

Answer options:

A.

Amazon Athena

B.

Amazon Redshift

C.

Amazon OpenSearch Service

D.

AWS Glue

How to approach this question

Identify the serverless SQL query engine for data stored in S3.

Full Answer

A.Amazon Athena✓ Correct
Amazon Athena is an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL. Athena is serverless, so there is no infrastructure to manage, and you pay only for the queries that you run. It is the standard tool for ad-hoc security investigations of logs stored in S3.

Common mistakes

Choosing OpenSearch, which requires cluster provisioning and uses a different query language (DSL) rather than standard SQL.
39All questions41

Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 5

75 questions · hints · full answers · grading

Sign up freeTake the exam

More questions from this exam

Q01A global enterprise is redesigning its AWS network architecture across 50 AWS accounts and 3 AWS ...HardQ02A company uses AWS Organizations to manage multiple accounts. The security team mandates that no ...MediumQ03A financial institution requires a disaster recovery strategy for its critical trading applicatio...HardQ04An enterprise is setting up a new multi-account AWS environment using AWS Control Tower. They nee...MediumQ05A company has a complex AWS environment with hundreds of linked accounts under AWS Organizations....Hard
View all 75 questions →