for each department in your organization. Now being data criticality it is required that every IP accessing data should be monitored and analyzed. Which of the following can help, so that you can stored transformed
access logs in S3 bucket to be queried by the analytics team?
A. You will be using AWS Lambda Service
B. You will be using AWS VPC Flow logs
C. You will be using AWS CloudTrail API call logs
D. You will be using AWS EMR service
E. You will be using AWS QuickSight Service
1. A,B
2. B,C
3. C,D
4. D,E
5. A,E
Correct Answer : 1 Exp : As question is asking you want to monitor the access to your VPC. For that you have to enable VPC Flow logs and in that logs you can check who all are accessing the VPC. And you can save this
VPC logs in S3 bucket and using the AWS Lambda function you will be triggering the data transformation. Which would transform the data in desired format. Once data is transformed you can use either AWS Athena service
or by some other means to query this data.
CloudTrail API logs does not give you the detail who is accessing your VPC. It is rather useful for the API logs, who called which API etc. So it can not be an answer for the given requirement.
EMR service can be used to run MapReduce or Spark jobs.
QuickSight is more for data visualization which is stored in S3 bucket.
1
