General Terms

Question 1

Amazon EC2 Instance Types

Answer 1

Reserved, On-Demand, Spot

Question 2

AWS Global infrastructure

Answer 2

AWS Regions, Availibility Zones

Question 3

Define the benefits of the AWS Cloud

Answer 3

Security, Reliability, High Availability, Elasticity, Agility, Pay-as-you-go Pricing, Scalability, Global Reach, Economy of scale

Question 4

Explain how the AWS cloud allows users to focus on business value

Answer 4

Shifting technical resources to revenue-generating activities as opposed to managing infrastructure

Question 5

Which operations will reduce costs by moving to the cloud

Answer 5

Right Sized Infrastructure, Benefits of Automation, Reduce Compliance Scope, Managed Services

Question 6

Explain the different cloud architecture design principles

Answer 6

Design for failure, Decouple components vs. Monolithic architecture, Implement Elasticity in the cloud vs. on-premises, Think Parallel

Question 7

Define the AWS Shared Responsibility Model

Answer 7

(Recognize the elements of the Shared Responsibility Model, Describe the customer and AWS’s responsibilities and how they may shift depending on the service used)

Question 8

Where to find AWS Compliance information

Answer 8

Locations of lists of recognized available compliance controls (for ex. hippa,socs), recognize that compliance requirements vary among AWS services

Question 9

Describe how customers achieve compliance on AWS

Answer 9

Identify different encryption options on AWS (for ex. in transit, at rest)

Question 10

Recognize there are services that will aid in auditing and reporting

Answer 10

Recognize that logs exist for auditing and monitoring, define amazon CloudWatch, AWS Config, and AWS CloudTrail

Question 11

Identify AWS Access Management Capabilities

Answer 11

Understand the purpose of User and Identity Management including - Access Keys and Password Policies (rotation, complexity), MFA, AWS IAM (Groups/Users, Roles, Policies, managed policies vompared to custom policies), Tasks that require use of root accounts, protection of root accounts

Question 12

Recognize there are different network security capabilities

Answer 12

Native AWS Services (for example, security groups, Network ACLs, AWS WAF), 3rd party security products from Marketplace

Question 13

Recognize there is documentation and where to find it

Answer 13

AWS Knowledge Center, Security Center, Security Forum, and Security blogs, Partner Systems Integrators

Question 14

Security Checks

Answer 14

A component of AWS Trusted advisor

Question 15

Identify at a high level different ways of provisioning and operating in the AWS Cloud

Answer 15

Programatic access, APIs, SDKs, AWS Management Console, CLI, Infrastructure as Code

Question 16

Identify different types of cloud deployment models

Answer 16

All in with cloud/cloud native, hybrid, onprem

Question 17

Identify Connectivity Options

Answer 17

VPN, AWS Direct Connect, Public Internet

Question 18

Describe how to achieve high availability through the use of multiple Availability Zones

Answer 18

Recall that high availability is achieved by using multiple Availability Zones, Recognize that Availability Zones do not share single points of failure

Question 19

Describe when to consider the use of multiple AWS Regions

Answer 19

Disaster recovery/business continuity, Low latency for end-users, Data sovereignty

Question 20

Describe at a high level the benefits of Edge Locations

Answer 20

Amazon CloudFront,AWS Global Accelerator

Question 21

Describe the categories of services on AWS

Answer 21

compute, storage, network, database

Question 22

different services that provide compute

Answer 22

for example, AWS Lambda compared to Amazon Elastic Container Service (Amazon ECS), or Amazon EC2, etc.)

Question 23

How is elasticity achieved in compute services

Answer 23

Auto Scaling

Question 24

Identify different AWS Storage services

Answer 24

Amazon S3, Amazon Elastic Block Store, Amazon S3 Glacier, AWS Snowball, Amazon Elastic File System, AWS Storage Gateway

Question 25

Identify AWS networking services

Answer 25

VPC, Security Groups, Amazon Route 53, VPN, AWS Direct Connect

Question 26

Identify different AWS Database Services

Answer 26

RDS, DynamoDB, Redshift

Question 27

Identify resources for technology support

Answer 27

Recognize there is documentation(best practices, whitepapers, AWS Knowledge Center, forums, blogs)

Question 28

Explain the Partner Network

Answer 28

(marketplace, 3rd party, independent software vendors, system integrators)

Question 29

Sources of AWS Technical Assistance and Knowledge

Answer 29

Proserve, solution architects, training and certs, the APN

Question 30

Compare and contrast the various pricing models for AWS

Answer 30

On-demand, Reserved Instances, Spot Instance, Savings Plans, Private Pricing

Question 31

Recognize the various account structures in relation to AWS billing and pricing

Answer 31

AWS organizations, how multiple accounts aid in allocating costs across departments

Question 32

Identify resources available for billing support

Answer 32

Cost explorer, aws cost and usage report, amazon quicksight, 3rd party partners, and AWS Marketplace tools

Question 33

Identify where to find pricing info on AWS Services

Answer 33

AWS Simple Monthly Calculator, AWS Servics product pages,AWS Pricing API