SECURITY & ARCHITECTURE Flashcards

1
Q

AWS Config

A

Service that enables you to continually monitor your
resources for adherence to best practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

AWS Artifact

A

Portal that provides self-service access to AWS
compliance reports and agreements you may have with
AWS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Amazon GuardDuty

A

Fully-managed service that continually monitors your
AWS account and resources for potential malicious
behavior and anomalies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

AWS Identity and
Access Management
(IAM)

A

Service that controls access to AWS resources. This is
where you create IAM users, IAM groups, and roles.
Policies are attached to identities for permission to
access resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Amazon Cognito

A

User directory service for custom applications that can
also enable access to AWS resources for your custom
applications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

AWS Storage Gateway

A

Hybrid-cloud storage service that enables companies to
take advantage of cloud storage on their local networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

AWS DataSync

A

Automated data transfer service that efficiently transfer
data from your local network into AWS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

AWS Glue

A

Fully-managed serverless extract, transform, and load
(ETL) service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Amazon EMR

A

Big-data cloud-based tool suite using popular open
source tools including Apache Spark, Apache Hive,
Presto, and many others.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

AWS Data Pipeline

A

Data workflow orchestration service that supports
multiple AWS services providing extract, transform, and
load (ETL) capabilities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Amazon Athena

A

Service that enables serverless querying of data stored
within Amazon S3 using standard SQL queries

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Amazon Quicksight

A

Fully-managed Business Intelligence (BI) service
enabling self-service data dashboards for data stored in
the cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Amazon CloudSearch

A

Managed search service for custom applications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Amazon Rekognition

A

Computer vision service powered by Machine Learning
that can detect objects in images and video

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Amazon Translate

A

Text translation service powered by Machine Learning
that can translate text (either streaming or in batch) into
many different languages. It also provides language
detection.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Amazon Transcribe

A

Audio transcription service powered by Machine
Learning that can transcribe audio (either streaming or
in batch) in many different languages

17
Q

AWS Shield

A

Managed Distributed Denial of Service (DDoS)
protection service for apps running on AWS

18
Q

Amazon Macie

A

Data classification, protection, and monitoring service
powered by machine learning for Amazon S3 data

19
Q

Amazon Inspector

A

Automated security assessment service for EC2
instances

20
Q

Auto Scaling Group

A

EC2 capability that manages a group of EC2 instances
that have rules for automated scaling and management
which includes health checks for each member of the
group

21
Q

Elastic Load Balancing

A

Service that supports routing traffic across multiple
targets including EC2 instances, Lambda functions, as
well as other targets on AWS

22
Q

Security Groups

A

Firewall-like controls for EC2 instances within a VPC that
controls access for inbound and outbound traffic.
Instances can have multiple security groups

23
Q

Network Access
Control Lists (ACL)

A

Control for inbound and outbound traffic within a
specific subnet in a VPC. Traffic can be allowed or
denied based on custom rules

24
Q

AWS VPN

A

Service that supports an encrypted tunnel into a VPC.
This can support either site-to-site (from your data
center into the VPC) or client (from a single computer
into the VPC)

25
Q

AWS Secrets Manager

A

Service that manages secrets (such as passwords, keys,
tokens, etc…) used in your custom applications on AWS.
It also supports auto-rotation of credentials on
supported AWS services

26
Q

AWS Service Catalog

A

Service for offering your organization’s pre-defined IT
offerings to other members of your organization in a
self-service portal on AWS

27
Q

AWS Marketplace

A

Catalog of third-party software offerings that makes it
easy to launch pre-defined solutions onto your AWS
account from these vendors

28
Q

AWS CodeCommit

A

Fully-managed source control service using Git

29
Q

AWS CodeBuild

A

Fully-managed build and continuous integration service
on AWS

30
Q

AWS CodeDeploy

A

Fully-managed deployment service for applications
running on Amazon EC2, AWS Fargate, AWS Lambda,
and on-premise servers

31
Q

AWS CodePipeline

A

Fully-managed continuous delivery service on AWS for
automating building, deploying, and testing. Integrates
with other developer services

32
Q

AWS CodeStar

A

Workflow tool for automatic creation of a continuous
delivery pipeline for a custom application using the
other developer services