You are an AWS consultant working in a startup IT company. The company wanted to increase visibility into its user and resource activity in AWS. So CloudTrail was turned on. As most resources were used in region ap-south-1, the trail was only configured to collect the activities in that region. The CloudTrail is saved in an S3 bucket. However, the customer is worried that if some disaster in region ap-south-1 happens, the CloudTrail data may get lost. Which actions should you take to address the concern?

Answer options:

A.Enable the encryption with SSE-KMS for the S3 bucket of the CloudTrail.
B.In the CloudTrail console, add another S3 bucket in a different region as the target for the trail.
C.Enable Cross-Region Replication for the trail S3 bucket to automatically copy objects in a different AWS Region.
D.Create a Lambda Function that can read files in the trail S3 bucket and copy the log files to an S3 bucket in another region.

Correct Answer – C
According to
https://docs.aws.amazon.com/en_us/awscloudtrail/latest/userguide/disaster-recovery-resiliency.html
resilience in CloudTrail should be considered to ensure that there is no data loss when failure happens in an AWS region.
Option A is incorrect: Because encryption with SSE-KMS does not help on preventing data loss.
Option B is incorrect: Because in the CloudTrail console, the user cannot configure another S3 bucket. Only 1 bucket can be configured.
Option C is CORRECT: Because Cross-Region Replication asynchronously copies data to another region, which can address the problem.
Option D is incorrect: This option brings extra efforts by creating a Lambda Function since the S3 bucket already provides a feature to replicate files automatically across different regions.