Please enable JavaScript.
Coggle requires JavaScript to display documents.
Exam Preparation - Coggle Diagram
Exam Preparation
Module 1: Cloud Concepts
Benefits of the AWS Cloud
Define aws cloud and its value proposition
allow you to focus on business
Explain cloud architecture
AWS CLoud economics
Question Walkthrough
read the stem
identify key words and phrases
read the responses
Identify the key (wrong answer is distractions)
Aspects of AWS Cloud Economics
how operating in AWS can affect your organizations operation cost
Total Cost of Ownership (TCO) concepts:
Operational expenses, or opex
day to day costs to your organization
Capital expenses, or capex
costs associated with creating long-term benefits
labor costs associated with on-premises operations
costs incurred in order to handle on-premises operations
impact of software licensing costs
Cost reduction operatons
automation
reduce compliance scope
right-sizing infra
managed services
Questions walkthrough
always look for the best possible key
Cloud Architecture Design Principles
decouple components vs monolithic architecture
difficult to maintain and scale for monolithic architecture
implement elasticity in the cloud vs on-premises
aws cloud can scale various things you need
design for failure
focus what and how components fail
think parallel
scale and using load balancer
Architecture principles
decoupling components
implementing elasticity
Design for failure
thinking parallel
Questions walkthrough
pay attention to not misread question and answers
Module 2
AWS Shared Responsability Model
AWS Responsability security of the cloud
Customer responsability for security in the cloud
Responsabilities
AWS is responsible for patching in AWS RDS
Customer is responsible for patching on EC2
Tip
for exam know who is responsible for some services on AWS Customer x AWS
AWS Cloud Security and Compliance Concepts
AWS Artifact gives you on-demand acess to AWS security and compliance reports
need to understand where to find compliance information
different ways to accomplish compliance and security on AWS
Encryption
Data in transit
data at rest
Understand what logs are and troubleshooting
AWS CloudWatch
AWS CloudTrail
logs every action in aws account through api call
AWS Config
what difference between then and propose of each
Understand concept of least privilege access
IAM Identity access and management
features
users, groups, roles, policies
roles
temporary access to cross account access
Resources for Security Support
Network access control list (network ACLs)
AWS WAF
filter traffic
ip addresses, http headers, http body, url strings
Security groups
third party security on AWS Marketplace
AWS Knowledge center, Security center, AWS security blogs, and the AWS Security forum
Module 3
Module 4