AWS Security & Architecture - Services List Flashcards
AWS Config
Service that enables you to continually monitor your resources for adherence to best practices
AWS Artifact
Portal that provides self-service access to AWS compliance reports and agreements you may have with AWS
Amazon GuardDuty
Fully-managed service that continually monitors your AWS account and resources for potential malicious behavior and anomalies
AWS Identity and Access Management (IAM)
Service that controls access to AWS resources. This is where you create IAM users, IAM groups, and roles. Policies are attached to identities for permission to access resources.
Amazon Cognito
User directory service for custom applications that can also enable access to AWS resources for your custom applications
AWS Storage Gateway
Hybrid-cloud storage service that enables companies to take advantage of cloud storage on their local networks
AWS DataSync
Automated data transfer service that efficiently transfer data from your local network into AWS
AWS Glue
Fully-managed serverless extract, transform, and load (ETL) service
Amazon EMR
Big-data cloud-based tool suite using popular open source tools including Apache Spark, Apache Hive, Presto, and many others.
Auto Scaling Group
EC2 capability that manages a group of EC2 instances that have rules for automated scaling and management which includes health checks for each member of the group
Elastic Load Balancing
Service that supports routing traffic across multiple targets including EC2 instances, Lambda functions, as well as other targets on AWS
Security Groups
Firewall-like controls for EC2 instances within a VPC that controls access for inbound and outbound traffic.
Instances can have multiple security groups
Network Access Control Lists (ACL)
Control for inbound and outbound traffic within a specific subnet in a VPC. Traffic can be allowed or denied based on custom rules
AWS VPN
Service that supports an encrypted tunnel into a VPC. This can support either site-to-site (from your data center into the VPC) or client (from a single computer into the VPC)
AWS Secrets Manager
Service that manages secrets (such as passwords, keys, tokens, etc…) used in your custom applications on AWS. It also supports auto-rotation of credentials on supported AWS services
AWS Service Catalog
Service for offering your organization’s pre-defined IT offerings to other members of your organization in a self-service portal on AWS
AWS Marketplace
Catalog of third-party software offerings that makes it easy to launch pre-defined solutions onto your AWS account from these vendors
AWS Data Pipeline
Data workflow orchestration service that supports multiple AWS services providing extract, transform, and load (ETL) capabilities
Amazon Athena
Service that enables serverless querying of data stored within Amazon S3 using standard SQL queries
Amazon Quicksight
Fully-managed Business Intelligence (BI) service enabling self-service data dashboards for data stored in the cloud
Amazon CloudSearch
Managed search service for custom applications
Amazon Rekognition
Computer vision service powered by Machine Learning that can detect objects in images and video
Amazon Translate
Text translation service powered by Machine Learning that can translate text (either streaming or in batch) into many different languages. It also provides language detection.
Amazon Transcribe
Audio transcription service powered by Machine Learning that can transcribe audio (either streaming or in batch) in many different languages
