Final Flashcards
Compliance Information
AWS Artifact
compliance needs among geographic locations
AWS Compliance
How customers secure resources
Amazon Inspector- vulnerability management (scans environment for vulnerability)
AWS Security Hub- overall security posture across all of your AWS accounts. (can initiate automated responses)
Amazon GuardDuty- threat detection -continuously monitors, analyzes, and processes AWS data sources and logs
AWS Shield- protects against DDoS
Aid in governance and compliance
Monitoring - CloudWatch
Auditing- CloudTrail, Audit Manager,Config
Reporting- Access reports
Understanding access keys, password policies, and credential storage
AWS Secrets Manager- manage, retrieve, and rotate database credentials, application credentials, OAuth tokens, API keys, and other secrets
AWS Systems Manager manage, secure end-to-end management solution for AWS applications and resources.
Understanding the use of AWS services for identifying security issues
AWS Trusted Advisor- inspects your AWS environment, makes recommendations to save money, improve system availability and performance, or help close security gaps.
AWS Local Zones
runs applications closer to end users
AWS Wavelength Zones
Build and deploy applications locally that meet your data residency and low latency needs.
Container applications
ECS and EKS
Serverless compute options
AWS Fargate
Lambda
Relational database
RDS
Aurora
NoSQL database
DynamoDB
In memory database
ElastiCache- database query caching closer to customer
Database Migration tools
DMS- Database Migration Service
SCT- Schema Conversion Tool
Edge Services
CloudFront- CDN speeds up the distribution of static(Mostly S3) and dynamic web content (EC2 for static/dynamic)
Global Accelerator- uses TCP and UDP data by proxying packets at edge locations