Cloud Security Monitoring and Logging

Correct Answer: Enable cloud auditing and export logs to a central log management solution

The best solution is to enable cloud auditing using a central log management solution, as this ensures that proper, comprehensive logs are created and stored for forensic purposes. Limiting user access, encrypting data, and communicating with the SaaS provider do not provide detailed logging required for forensics. Third-party monitoring tools may not have the necessary integration with the SaaS provider, and disabling non-essential logging can reduce the overall visibility.

Correct Answer: Enable Cloud Access Security Broker (CASB) solution

A CASB solution would be the appropriate choice, as it provides visibility, control, and compliance for cloud-based file access. File-level encryption, though providing security, does not aid monitoring access. NSM focuses on network traffic and is not specifically designed for cloud-based file access. Vulnerability scanning doesn't provide real-time monitoring, and data backup frequency does not affect the visibility of file access. MFA increases authentication security but does not provide monitoring capabilities.

Correct Answer: Implement a cloud-native Security Information and Event Management (SIEM) tool

The correct answer is to implement a cloud-native SIEM tool because it is specifically designed to provide monitoring and logging capabilities for cloud environments. On-premises and open-source tools might not have full compatibility with the cloud provider's APIs and infrastructure. Switching to SaaS will not improve monitoring in IaaS and PaaS environments. Regular checks on the status page and writing custom scripts might not provide comprehensive monitoring and logging capabilities. File integrity monitoring tools focus on checking file changes and not the overall security monitoring and logging