AWS Practice Questions Flashcards

1
Q

With Amazon S3, Standard Storage is designed to provide 99.999999999 percent durability and what percent availability?

A

99.99% availability of objects over a given year.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

With HTTP and HTTPS traffic, what feature of an Application Load Balancer can be used to bind a user’s session to a specific instance?

A

Sticky Sessions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

With which pricing model do you pay for compute capacity by the hour with no required minimum commitments?

A

On-Demand Instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Your web application requires temporary authorization to use AWS services. Which IAM entity should be used?

A

Role

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is Amazon Inspector?

A

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is AWS Shield?

A

AWS Shield is a security service that protects web applications hosted on the Amazon Web Services public cloud against distributed denial of service (DDoS) attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the difference between AWS Shield Standard vs AWS Shield Advnaced?

A

Higher level of protection, features, and benefits. For example, with Advanced, the user has access the Amazon 24 hour DDos response team.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is Standard-Infrequent 99.9999999999% durability’s availability?

A

99.99%

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the pillars of the Well-Architected Framework?

A

CORPS

Cost Optimization
Operational Excellence
Performance Efficiency
Reliability
Security
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which of the pillars of the Well-Architected framework is defined as the ability to run an monitor systems to deliver business value and to continually improve supporting processes and procedures?

A

Operational excellence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which of the pillars of the Well-Architected framework is defined as the ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies.

A

Security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which of the pillars of the Well-Architected framework is defined as the ability to of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.

A

Reliability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which of the pillars of the Well-Architected framework is defined as the ability to use computing resources efficiently to meet system requirements and to maintain that efficiency as demand changes and technologies evolve.

A

Performance Efficiency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the pillars of the Well-Architected framework is defined as the abilityto avoid or eliminate unneeded cost or suboptimal resources.

A

Cost optimization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are the AWS Assurance/Compliance 3 Major Categories?

A

Certifications/Attestations

Laws, Regulations, and Privacy

Alignments/Frameworks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are the major AWS Compliance Certifications to be aware of?

A

ISO 27001

PCI DSS Level 1

SOC 1

SOC 2

SOC 3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

A _____ _____ is a check to see if your AWS infrastructure meets a given compliance standard. (I;E - even though AWS itself might, your infrastructure or application may not)

A

Gap Audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What are the Important Compliance Laws, Regulations and Privacies (AWS adheres to these)?

A

HIPAA - Standard required to store health information

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What are the most importan Compliance Alignments and Frameworks (AWS adheres to these)?

A

G-Cloud UK - Required for hosting government customers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What does “AWS Manages security of the cloud, security in the cloud is the responsibility of the customer.” mean?

A

Customers retain control of what security they choose to implement to protect their own content, platform, applications, systems and networks, no differently than they would in an on-site datacenter.

21
Q

What is WAF?

A

Web Application Firewall

Protects from common web exploits that could

affect availability

compromise security

consume excessive resources

22
Q

What is the difference between using Elastic Load Balancers with security groups as security vs using a WAF?

A

ELB/Security Groups secure protocols and ports (Layer 4)

WAF - Can actually read the data being sent (Layer 7)

23
Q

What is AWS Shield?

A

Managed DDoS protection

safeguards web apps

always-on detection

enacts inline mitigations

24
Q

What are the two tiers of AWS Shield?

A

Standard - free and comes by default

Advanced $3K/month

25
Q

What is AWS Inspector?

A

Automated Security Assessment

Audits for vulnerabilities or deviation from best practices

Produces a lined report ordered by criticality

Installed on your EC2 instances

26
Q

What is AWS Trusted Advisor?

A

Optimization guidance for your environment for

cost optimization

performance

security

fault tolerance

27
Q

What are the two levels of AWS Trusted Advisor?

A

Core Checks and Recommendations (free)

Full Trusted Advisor - Business and Enterprise only

28
Q

What is the AWS Cloud?

A

Amazon Web Services or AWS in short, is a bundled remote computing service that provides cloud computing infrastructure over the Internet with storage, bandwidth and customized support for application programming interfaces (API).

29
Q

What is the AWS Value Proposition?

A

“AIFS”
Agility
Speed
Experimentation

Innovation
Elasticity Scale on demand
Eliminate wasted capacity

Flexibility
Broad set of products
Low to no cost to entry

Security
Amazon has acquired many certifications
Shared responsibility model

30
Q

Which of the following allows you to bid on spare Amazon EC2 computing capacity?

A

Spot Instances

31
Q

With EC2 instances, which of the following is a snapshot of a particular state of that resource?

A

Golden Image

32
Q

Amazon S3 Storage Glacier is a long-term storage solution that currently starts at what rate per GB per month?

A

$0.004

33
Q

Amazon S3 Storage Glacier is a long-term storage solution that currently starts at what rate per GB per month?

A

$0.004

34
Q

Amazon EMR offers what type of managed framework to process large amounts of data across dynamically scalable Amazon EC2 instances?

A

Hadoop

35
Q

With which pricing model do you pay for compute capacity by the hour with no required minimum commitments?

A

On-Demand Instances

36
Q

Which of the following from Amazon is an interactive query service used to analyze data in Amazon S3 using standard SQL and serverless (so you pay for the queries that you run)?

A

Athena

37
Q

With which of the following can you run code without provisioning or managing servers and pay only for the compute time consumed (there is no charge when the code is not running)?

A

AWS Lambda

38
Q

Why is AWS more economical than traditional data centers for applications with varying compute workloads?

A

Amazon EC2 instances can be launched on-demand when needed.

39
Q

Which AWS service would simplify migration of a database to AWS?

A

AWS Database Migration Service (AWS DMS)

40
Q

Which AWS offering enables customers to find, buy, and immediately start using software solutions in their AWS environment?

A

AWS Marketplace

41
Q

Which AWS networking service enables a company to create a virtual network within AWS?

A

Amazon Virtual Private Cloud (Amazon VPC)

42
Q

Which of the following is AWS’s responsibility under the AWS shared responsibility model?

A) Configuring third-party applications
B) Maintaining physical hardware
C) Securing application access and data
D) Managing custom Amazon Machine Images (AMIs)

A

B

43
Q

Which component of AWS global infrastructure does Amazon CloudFront use to ensure low-latency delivery?
A) AWS Regions
B) AWS edge locations
C) AWS Availability Zones
D) Amazon Virtual Private Cloud (Amazon VPC)

A

B) AWS edge locations

44
Q

How would a system administrator add an additional layer of login security to a user’s AWS Management Console?

A

Enable Multi-Factor Authentication

45
Q

8) Which service can identify the user that made the API call when an Amazon Elastic Compute Cloud (Amazon EC2) instance is terminated?
A) Amazon CloudWatch
B) AWS CloudTrail
C) AWS X-Ray
D) AWS Identity and Access Management (AWS IAM)

A

B) AWS CloudTrail

46
Q

Which service would you use to send alerts based on Amazon CloudWatch alarms?
A) Amazon Simple Notification Service (Amazon SNS)
B) AWS CloudTrail
C) AWS Trusted Advisor
D) Amazon Route 53

A

A) Amazon Simple Notification Service (Amazon SNS)

47
Q

Where can a customer find information about prohibited actions on AWS infrastructure?

A

D) AWS Acceptable Use Policy

48
Q

What are three EC2 Spot Instances use cases?

A

Applications that have flexible start times

Applications that are only feasible at very low compute prices

Users with urgent computing needs for a lot of additional capacity.