Security and Compliance (30% of scored content) Domain 3: Cloud Technology and Services (34% of scored content) Domain 4: Billing, Pricing, and Support (12% of scored content) Agenda "The Road to AWS Cloud Practitioner Certification"
AWS Cloud Economies of Scale → Lower costs by using AWS’s massive infrastructure Global Infrastructure → Fast deployment and worldwide reach High Availability & Elasticity → Reliable services that scale with demand Agility → Quickly adapt and innovate without heavy upfront investment "The Road to AWS Cloud Practitioner Certification"
AWS Cloud Well-Architected Pillars: Operational Excellence, Security, Reliability, Performance Efficiency, Cost Optimization, Sustainability Pillar Differences: Each focuses on a specific aspect of workload design and optimization "The Road to AWS Cloud Practitioner Certification"
Cost Types: Fixed vs. variable costs On-Premises Costs: Expenses tied to maintaining local infrastructure Licensing Strategies: BYOL (Bring Your Own License) vs. included licenses "The Road to AWS Cloud Practitioner Certification"
responsibility model Recognizing the components of the AWS shared responsibility model Describing the customer’s responsibilities on AWS Describing AWS responsibilities Describing responsibilities that the customer and AWS share "The Road to AWS Cloud Practitioner Certification"
governance, and compliance concepts AWS Compliance Info: Access via AWS Artifact (AWS Artifact provides on-demand downloads of AWS security and compliance documents) Compliance Needs: Vary by region or industry (AWS Compliance resources) Securing AWS Resources: Tools like Amazon Inspector, Security Hub, GuardDuty, AWS Shield "The Road to AWS Cloud Practitioner Certification"
governance, and compliance concepts Security Hub: A cloud security posture management service that provides a comprehensive view of your security state GuardDuty: An intelligent threat detection service that continuously monitors AWS accounts and workloads for malicious or unauthorized activity AWS Shield: A managed service that provides automated protection against distributed denial of service (DDoS) attacks "The Road to AWS Cloud Practitioner Certification"
password policies, AWS Secrets Manager, Systems Manager Authentication Methods: MFA, IAM Identity Center, cross-account IAM roles Access Management: Groups, users, custom & managed policies following least privilege "The Road to AWS Cloud Practitioner Certification" 2.3: Identify AWS access management capabilities
network ACLs, AWS WAF Security Information Sources: AWS Knowledge Center, Security Center, Security Blog Identifying Security Issues: AWS Trusted Advisor "The Road to AWS Cloud Practitioner Certification" 2.4: Identify components and resources for security
continuously inspects your AWS environment to identify ways to optimize costs, improve performance, increase security, and enhance resilience "The Road to AWS Cloud Practitioner Certification" 2.4: Identify components and resources for security
CLI, Console, and IaC for managing AWS resources Deployment Models: Cloud, hybrid, and on-premises environments Security Insights: Use AWS Trusted Advisor to identify security issues "The Road to AWS Cloud Practitioner Certification" 3.1: Define methods of deploying and operating in the AWS Cloud
Availability Zones (AZs), and edge locations High Availability: Use multiple AZs for fault tolerance and uptime Edge Benefits: Faster content delivery via CloudFront and Global Accelerator "The Road to AWS Cloud Practitioner Certification" 3.2: Define the AWS global infrastructure
based on workload (Compute, Memory, or Storage optimized) Container Services: Use ECS or EKS for containerized applications Serverless Options: Run code without servers using AWS Fargate or Lambda "The Road to AWS Cloud Practitioner Certification" 3.3: Identify AWS compute services
to handle changing workloads Load Balancers: Distribute traffic for high availability and reliability "The Road to AWS Cloud Practitioner Certification" 3.3: Identify AWS compute services
and routing elements VPC Security: Security groups and network ACLs Amazon Route 53: Domain name system (DNS) service for routing traffic "The Road to AWS Cloud Practitioner Certification" 3.5: Identify AWS network services
SNS, SQS (Event-driven communication and messaging) Business Applications: Amazon Connect, Amazon SES (Contact and email services) Customer Engagement: AWS Activate, AWS IQ, AWS Managed Services, AWS Support (Programs and services to support customers) "The Road to AWS Cloud Practitioner Certification" 3.8: Identify services from other in-scope AWS service categories
CloudShell, CodeArtifact, CodeBuild, CodeCommit, CodeDeploy, CodePipeline, CodeStar, X-Ray (Build, test, deploy, and monitor applications) Frontend Services: AWS Amplify, AppSync (Web and mobile app development and data integration) "The Road to AWS Cloud Practitioner Certification" 3.8: Identify services from other in-scope AWS service categories
Budgets, Cost Explorer, Billing Conductor (Track, Analyze, and Allocate costs) Pricing Tool: AWS Pricing Calculator (estimate and plan service costs) "The Road to AWS Cloud Practitioner Certification" 4.2: Understand resources for billing, budget, and cost management
awedis
paigeccino
lara
jakevdp
addyosmani
trallard
tammyeverts
marcelosomers
chrislema
aleyda
productmarketing
chriscoyier
bermonpainter
