Sec & Arch Services

Question 1

Service that enables you to continually monitor your

resources for adherence to best practices

Answer 1

AWS Config

Question 2

Portal that provides self-service access to AWS
compliance reports and agreements you may have with
AWS

Answer 2

AWS Artifact

Question 3

Fully-managed service that continually monitors your
AWS account and resources for potential malicious
behavior and anomalies

Answer 3

Amazon GuardDuty

Question 4

Service that controls access to AWS resources. This is
where you create IAM users, IAM groups, and roles.
Policies are attached to identities for permission to
access resources.

Answer 4

AWS Identity and Access Management (IAM)

Question 5

User directory service for custom applications that can
also enable access to AWS resources for your custom
applications

Answer 5

Amazon Cognito

Question 6

Hybrid-cloud storage service that enables companies to

take advantage of cloud storage on their local networks

Answer 6

AWS Storage Gateway

Question 7

Automated data transfer service that efficiently transfer data from your local network into AWS

Answer 7

AWS DataSync

Question 8

Fully-managed serverless extract, transform, and load (ETL) service

Answer 8

AWS Glue

Question 9

Big-data cloud-based tool suite using popular open
source tools including Apache Spark, Apache Hive,
Presto, and many others.

Answer 9

Amazon EMR

Question 10

Data workflow orchestration service that supports
multiple AWS services providing extract, transform, and
load (ETL) capabilities

Answer 10

AWS Data Pipeline

Question 11

Service that enables serverless querying of data stored

within Amazon S3 using standard SQL queries

Answer 11

Amazon Athena

Question 12

Fully-managed Business Intelligence (BI) service
enabling self-service data dashboards for data stored in
the cloud

Answer 12

Amazon Quicksight

Question 13

Managed search service for custom applications

Answer 13

Amazon CloudSearch

Question 14

Computer vision service powered by Machine Learning

that can detect objects in images and video

Answer 14

Amazon Rekognition

Question 15

Text translation service powered by Machine Learning
that can translate text (either streaming or in batch) into
many different languages. It also provides language
detection.

Answer 15

Amazon Translate

Question 16

Audio transcription service powered by Machine
Learning that can transcribe audio (either streaming or
in batch) in many different languages

Answer 16

Amazon Transcribe

Question 17

Managed Distributed Denial of Service (DDoS)

protection service for apps running on AWS

Answer 17

AWS Shield

Question 18

Data classification, protection, and monitoring service

powered by machine learning for Amazon S3 data

Answer 18

Amazon Macie

Question 19

Automated security assessment service for EC2

instances

Answer 19

Amazon Inspector

Question 20

EC2 capability that manages a group of EC2 instances
that have rules for automated scaling and management
which includes health checks for each member of the
group

Answer 20

Auto Scaling Group

Question 21

Service that supports routing traffic across multiple
targets including EC2 instances, Lambda functions, as
well as other targets on AWS

Answer 21

Elastic Load Balancing (ELB)

Question 22

Firewall-like controls for EC2 instances within a VPC that
controls access for inbound and outbound traffic.
Instances can have multiple security groups

Answer 22

Security Groups

Question 23

Control for inbound and outbound traffic within a
specific subnet in a VPC. Traffic can be allowed or
denied based on custom rules

Answer 23

Network Access Control Lists (ACL)

Question 24

Service that supports an encrypted tunnel into a VPC.
This can support either site-to-site (from your data
center into the VPC) or client (from a single computer
into the VPC)

Answer 24

AWS VPN

Question 25

Service that manages secrets (such as passwords, keys,
tokens, etc…) used in your custom applications on AWS.
It also supports auto-rotation of credentials on
supported AWS services

Answer 25

AWS Secrets Manager

Question 26

Service for offering your organization’s pre-defined IT
offerings to other members of your organization in a
self-service portal on AWS

Answer 26

AWS Service Catalog

Question 27

Catalog of third-party software offerings that makes it
easy to launch pre-defined solutions onto your AWS
account from these vendors

Answer 27

AWS Marketplace

Question 28

Fully-managed source control service using Git

Answer 28

AWS CodeCommit

Question 29

Fully-managed build and continuous integration service

on AWS

Answer 29

AWS CodeBuild

Question 30

Fully-managed deployment service for applications
running on Amazon EC2, AWS Fargate, AWS Lambda,
and on-premise servers

Answer 30

AWS CodeDeploy

Question 31

Fully-managed continuous delivery service on AWS for
automating building, deploying, and testing. Integrates
with other developer services

Answer 31

AWS CodePipeline

Question 32

Workflow tool for automatic creation of a continuous
delivery pipeline for a custom application using the
other developer services

Answer 32

AWS CodeStar