AWS Security & Architecture - Services List

Question 1

AWS Config

Answer 1

Service that enables you to continually monitor your resources for adherence to best practices

Question 2

AWS Artifact

Answer 2

Portal that provides self-service access to AWS compliance reports and agreements you may have with AWS

Question 3

Amazon GuardDuty

Answer 3

Fully-managed service that continually monitors your AWS account and resources for potential malicious behavior and anomalies

Question 4

AWS Identity and Access Management (IAM)

Answer 4

Service that controls access to AWS resources. This is where you create IAM users, IAM groups, and roles. Policies are attached to identities for permission to access resources.

Question 5

Amazon Cognito

Answer 5

User directory service for custom applications that can also enable access to AWS resources for your custom applications

Question 6

AWS Storage Gateway

Answer 6

Hybrid-cloud storage service that enables companies to take advantage of cloud storage on their local networks

Question 7

AWS DataSync

Answer 7

Automated data transfer service that efficiently transfer data from your local network into AWS

Question 8

AWS Glue

Answer 8

Fully-managed serverless extract, transform, and load (ETL) service

Question 9

Amazon EMR

Answer 9

Big-data cloud-based tool suite using popular open source tools including Apache Spark, Apache Hive, Presto, and many others.

Question 10

Auto Scaling Group

Answer 10

EC2 capability that manages a group of EC2 instances that have rules for automated scaling and management which includes health checks for each member of the group

Question 11

Elastic Load Balancing

Answer 11

Service that supports routing traffic across multiple targets including EC2 instances, Lambda functions, as well as other targets on AWS

Question 12

Security Groups

Answer 12

Firewall-like controls for EC2 instances within a VPC that controls access for inbound and outbound traffic.
Instances can have multiple security groups

Question 13

Network Access Control Lists (ACL)

Answer 13

Control for inbound and outbound traffic within a specific subnet in a VPC. Traffic can be allowed or denied based on custom rules

Question 14

AWS VPN

Answer 14

Service that supports an encrypted tunnel into a VPC. This can support either site-to-site (from your data center into the VPC) or client (from a single computer into the VPC)

Question 15

AWS Secrets Manager

Answer 15

Service that manages secrets (such as passwords, keys, tokens, etc…) used in your custom applications on AWS. It also supports auto-rotation of credentials on supported AWS services

Question 16

AWS Service Catalog

Answer 16

Service for offering your organization’s pre-defined IT offerings to other members of your organization in a self-service portal on AWS

Question 17

AWS Marketplace

Answer 17

Catalog of third-party software offerings that makes it easy to launch pre-defined solutions onto your AWS account from these vendors

Question 18

AWS Data Pipeline

Answer 18

Data workflow orchestration service that supports multiple AWS services providing extract, transform, and load (ETL) capabilities

Question 19

Amazon Athena

Answer 19

Service that enables serverless querying of data stored within Amazon S3 using standard SQL queries

Question 20

Amazon Quicksight

Answer 20

Fully-managed Business Intelligence (BI) service enabling self-service data dashboards for data stored in the cloud

Question 21

Amazon CloudSearch

Answer 21

Managed search service for custom applications

Question 22

Amazon Rekognition

Answer 22

Computer vision service powered by Machine Learning that can detect objects in images and video

Question 23

Amazon Translate

Answer 23

Text translation service powered by Machine Learning that can translate text (either streaming or in batch) into many different languages. It also provides language detection.

Question 24

Amazon Transcribe

Answer 24

Audio transcription service powered by Machine Learning that can transcribe audio (either streaming or in batch) in many different languages

Question 25

AWS Shield

Answer 25

Managed Distributed Denial of Service (DDoS) protection service for apps running on AWS

Question 26

Amazon Macie

Answer 26

Data classification, protection, and monitoring service powered by machine learning for Amazon S3 data

Question 27

Amazon Inspector

Answer 27

Automated security assessment service for EC2 instances

Question 28

AWS CodeCommit

Answer 28

Fully-managed source control service using Git

Question 29

AWS CodeBuild

Answer 29

Fully-managed build and continuous integration service on AWS

Question 30

AWS CodeDeploy

Answer 30

Fully-managed deployment service for applications running on Amazon EC2, AWS Fargate, AWS Lambda, and on-premise servers

Question 31

AWS CodePipeline

Answer 31

Fully-managed continuous delivery service on AWS for automating building, deploying, and testing. Integrates with other developer services

Question 32

AWS CodeStar

Answer 32

Workflow tool for automatic creation of a continuous delivery pipeline for a custom application using the other developer services