SECURITY & ARCHITECTURE

Question 1

AWS Config

Answer 1

Service that enables you to continually monitor your
resources for adherence to best practices

Question 2

AWS Artifact

Answer 2

Portal that provides self-service access to AWS
compliance reports and agreements you may have with
AWS

Question 3

Amazon GuardDuty

Answer 3

Fully-managed service that continually monitors your
AWS account and resources for potential malicious
behavior and anomalies

Question 4

AWS Identity and
Access Management
(IAM)

Answer 4

Service that controls access to AWS resources. This is
where you create IAM users, IAM groups, and roles.
Policies are attached to identities for permission to
access resources.

Question 5

Amazon Cognito

Answer 5

User directory service for custom applications that can
also enable access to AWS resources for your custom
applications

Question 6

AWS Storage Gateway

Answer 6

Hybrid-cloud storage service that enables companies to
take advantage of cloud storage on their local networks

Question 7

AWS DataSync

Answer 7

Automated data transfer service that efficiently transfer
data from your local network into AWS

Question 8

AWS Glue

Answer 8

Fully-managed serverless extract, transform, and load
(ETL) service

Question 9

Amazon EMR

Answer 9

Big-data cloud-based tool suite using popular open
source tools including Apache Spark, Apache Hive,
Presto, and many others.

Question 10

AWS Data Pipeline

Answer 10

Data workflow orchestration service that supports
multiple AWS services providing extract, transform, and
load (ETL) capabilities

Question 11

Amazon Athena

Answer 11

Service that enables serverless querying of data stored
within Amazon S3 using standard SQL queries

Question 12

Amazon Quicksight

Answer 12

Fully-managed Business Intelligence (BI) service
enabling self-service data dashboards for data stored in
the cloud

Question 13

Amazon CloudSearch

Answer 13

Managed search service for custom applications

Question 14

Amazon Rekognition

Answer 14

Computer vision service powered by Machine Learning
that can detect objects in images and video

Question 15

Amazon Translate

Answer 15

Text translation service powered by Machine Learning
that can translate text (either streaming or in batch) into
many different languages. It also provides language
detection.

Question 16

Amazon Transcribe

Answer 16

Audio transcription service powered by Machine
Learning that can transcribe audio (either streaming or
in batch) in many different languages

Question 17

AWS Shield

Answer 17

Managed Distributed Denial of Service (DDoS)
protection service for apps running on AWS

Question 18

Amazon Macie

Answer 18

Data classification, protection, and monitoring service
powered by machine learning for Amazon S3 data

Question 19

Amazon Inspector

Answer 19

Automated security assessment service for EC2
instances

Question 20

Auto Scaling Group

Answer 20

EC2 capability that manages a group of EC2 instances
that have rules for automated scaling and management
which includes health checks for each member of the
group

Question 21

Elastic Load Balancing

Answer 21

Service that supports routing traffic across multiple
targets including EC2 instances, Lambda functions, as
well as other targets on AWS

Question 22

Security Groups

Answer 22

Firewall-like controls for EC2 instances within a VPC that
controls access for inbound and outbound traffic.
Instances can have multiple security groups

Question 23

Network Access
Control Lists (ACL)

Answer 23

Control for inbound and outbound traffic within a
specific subnet in a VPC. Traffic can be allowed or
denied based on custom rules

Question 24

AWS VPN

Answer 24

Service that supports an encrypted tunnel into a VPC.
This can support either site-to-site (from your data
center into the VPC) or client (from a single computer
into the VPC)

Question 25

AWS Secrets Manager

Answer 25

Service that manages secrets (such as passwords, keys,
tokens, etc…) used in your custom applications on AWS.
It also supports auto-rotation of credentials on
supported AWS services

Question 26

AWS Service Catalog

Answer 26

Service for offering your organization’s pre-defined IT
offerings to other members of your organization in a
self-service portal on AWS

Question 27

AWS Marketplace

Answer 27

Catalog of third-party software offerings that makes it
easy to launch pre-defined solutions onto your AWS
account from these vendors

Question 28

AWS CodeCommit

Answer 28

Fully-managed source control service using Git

Question 29

AWS CodeBuild

Answer 29

Fully-managed build and continuous integration service
on AWS

Question 30

AWS CodeDeploy

Answer 30

Fully-managed deployment service for applications
running on Amazon EC2, AWS Fargate, AWS Lambda,
and on-premise servers

Question 31

AWS CodePipeline

Answer 31

Fully-managed continuous delivery service on AWS for
automating building, deploying, and testing. Integrates
with other developer services

Question 32

AWS CodeStar

Answer 32

Workflow tool for automatic creation of a continuous
delivery pipeline for a custom application using the
other developer services