Services Flashcards
Service that enables you to continually monitor your resources for adherence to best practices.
AWS Config
Portal that provides self-service access to AWS compliance reports and agreements you may have with AWS.
AWS Artifact
Fully-managed service that continually monitors your AWS account and resources for potential malicious behavior and anomalies.
Amazon GuardDuty
Service that controls access to AWS resources. This is where you create IAM users, IAM groups, and roles. Policies are attached to identities for permission access resources.
AWS Identity and Access Management (IAM)
User directory service for custom applications that can also enable access to AWS resources for your custom applications. Cognito can allow users access to AWS resources using federation through third-party sources like Google, Facebook, etc.
Amazon Cognito
Hybrid-cloud storage service that enables companies to take advantage of cloud storage on their local networks.
AWS Storage Gateway
Automated data transfer service that efficiently transfer data from your local network into AWS.
AWS DataSync
Fully-managed serverless extract, transform, and load (ETL) service.
AWS Glue
Big-data cloud-based tool suite using popular open source tools including Apache Spark, Apache Hive, Presto, and many others.
Amazon EMR
Data workflow orchestration service that supports multiple AWS services providing extract, transform, and load (ETL) capabilities.
AWS Data Pipeline
Service that enables serverless querying of data stored within Amazon S3 using standard SQL queries.
Amazon Athena
Fully-managed Business Intelligence (BI) service enabling self-service data dashboards for data stored in the cloud.
Amazon Quicksight
Managed search service for custom applications.
Amazon CloudSearch
Computer vision service powered by Machine Learning that can detect objects in images and video.
Amazon Rekognition
Text translation service powered by Machine Learning that can translate text (either streaming or in batch) into many different languages. It also provides language detection.
Amazon Translate
Audio transcription service powered by Machine Learning that can transcribe audio (either streaming or in batch) in many different languages.
Amazon Transcribe
Managed Distributed Denial of Service (DDoS) protection service for apps running on AWS.
AWS Shield
Data classification, protection, and monitoring service powered by machine learning for Amazon S3 data.
Amazon Macie
Automated security assessment service for EC2 instances.
Amazon Inspector
EC2 capability that manages a group of EC2 instances that have rules for automated scaling and management which includes health checks for each member of the group.
Auto Scaling Group
Service that supports routing traffic across multiple targets including EC2 instances, Lambda functions, as well as other targets on AWS.
Elastic Load Balancing
Firewall-like controls for EC2 instances within a VPC that controls access for inbound and outbound traffic. Instances can have multiple security groups.
Security Groups
Control for inbound and outbound traffic within a
specific subnet in a VPC. Traffic can be allowed or
denied based on custom rules.
Network Access
Control Lists (ACL)
Service that supports an encrypted tunnel into a VPC. This can support either site-to-site (from your data center into the VPC) or client (from a single computer into the VPC).
AWS VPN
Service that manages secrets (such as passwords, keys, tokens, etc…) used in your custom applications on AWS. It also supports auto-rotation of credentials on
supported AWS services.
AWS Secrets Manager
Service for offering your organization’s pre-defined IT offerings to other members of your organization in a self-service portal on AWS.
AWS Service Catalog
Catalog of third-party software offerings that makes it easy to launch pre-defined solutions onto your AWS account from these vendors.
AWS Marketplace
Fully-managed source control service using Git.
AWS CodeCommit
Fully-managed build and continuous integration service on AWS.
AWS CodeBuild
Fully-managed deployment service for applications running on Amazon EC2, AWS Fargate, AWS Lambda, and on-premise servers.
AWS CodeDeploy
Fully-managed continuous delivery service on AWS for automating building, deploying, and testing. Integrates with other developer services.
AWS CodePipeline
Workflow tool for automatic creation of a continuous delivery pipeline for a custom application using the other developer services.
AWS CodeStar
Service that provides secure and resizable virtual servers on AWS.
Amazon EC2
Platform (PaaS) for scaling and deploying web apps and services across a specific list of technologies.
AWS Elastic Beanstalk
Service that enables you to use compute resources without having to launch or manage the underlying infrastructure - this is leveraged in serverless architectures.
This service is commonly used in a serverless architecture.
AWS Lambda
Service that enables you to deploy, manage, and scale containerized applications on AWS.
Amazon
Elastic Container Service (ECS)
Service that enables you to run Kubernetes in the AWS cloud. You would utilize this if you had a specific need to run Keubernetes for your containerized applications.
Amazon Elastic Kubernetes Service (EKS)
Compute engine that works with both ECS and EKS. It is serverless and has pay-for-what-you-use pricing model.
This service is commonly used in a serverless architecture for container applications.
AWS Fargate
serverless
Service that enables you to build and run containerized web application without any prior container or infrastructure experience.
AWS App Runner
Highly-available AWS Domain Name Service (DNS) service that can be leveraged in creating highly available and fault tolerant applications.
Amazon Route 53
Logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.
Amazon VPC
Cloud service solution that makes it easy to establish a dedicated network connection from your data center to AWS. This connection does not go over the public internet.
AWS Direct Connect
Fully managed API management service that handles concepts like authentication, logging, and throttling for your API layer.
Amazon API Gateway
Amazon’s global Content Delivery Network (CDN) service that enables your users to get content from a server that is closest to them.
This is a global service.
Amazon CloudFront
global service
AWS networking service that routes your traffic through the AWS global network, increasing the overall speed through optimaizations by AWS.
AWS Global Accelerator
Service that enables you to distribute traffic across multiple targets (including EC2, ECS, Lambda).
Elastic Load Balancing
Service that provides object storage for objects up to 5 TB in size - with no limit on the total storage.
Amazon Simple
Storage Service (S3)
Archive storage classes for Amazon S3. These are
designed for objects you need to keep but don’t plan to access.
Instant Retrieval – archive storage for data you don’t plan to access but can be retrieved in milliseconds.
Flexible Retrieval – archive storage for data you don’t plan to access but can be retrieved in minutes to hours.
Deep Archive – lowest cost archive storage for rarely access data which can be retrieved within 12 hours.
S3 Glacier
Persistent block storage designed for use with a single EC2 server. It can scale to support petabytes of data and supports different volume types.
Amazon Elastic Block
Store (EBS)
Fully managed NFS file system designed for Linux
workloads with support for petabytes of data.
This service can be used in a hybrid cloud architecture.
Amazon Elastic File
System (EFS)
Petabyte scale data transfer service where a physical device is delivered to your organization and returned by a local carrier then loaded into Amazon S3.
This service can assist in data migration into the cloud from your data center.
AWS Snowball
Exabyte scale data transfer service where a ruggedized shipping container is sent to your office then loaded into Amazon S3.
This service can assist in data migration into the cloud from your data center.
AWS Snowmobile
Managed pub/sub (publish / subscribe) messaging service. This can enable fan-out architecture with one message triggering multiple actions.
This service is commonly used in a serverless architecture.
Amazon Simple
Notification Service
(SNS)
Managed message queue service. This can enable fault tolerant and serverless applications. This supports standard and FIFO (first-in first-out) queues.
This service is commonly used in a serverless
architecture.
Amazon Simple Queue
Service (SQS)
Manages the orchestration of complex workflows which are defined using Amazon States Language. It can be leveraged in a serverless architecture.
This service is commonly used in a serverless
architecture.
AWS Step Functions
Service that provides audit trail for all services used in an AWS account (across all interaction methods).
AWS CloudTrail
Managed service for launching infrastructure based on templates. This approach is known as infrastructure as code. CloudFormation also provides drift detection to know when infrastructure has veered from what is defined in the template.
AWS CloudFormation
An infrastructure configuration management service that provides a managed service for Chef and Puppet.
AWS OpsWorks
Monitoring and management service that integrates with most AWS services. It provides both metrics and alarms based on those metrics as well as logs.
Amazon CloudWatch
Provides continual analysis of AWS resources to ensure they are meeting rules defined in the service.
AWS Config
Service that provides a collection of tools and insight into operational data for central management of those cloud or on-premise instances.
AWS Systems Manager
System that launches a multi-account configuration based on AWS best practices.
AWS Control Tower
Managed service for relational databases including support for MySQL, PostgreSQL, MariaDB, Oracle, SQL Server, and Amazon Aurora.
Amazon Relational
Database Service
(RDS)
MySQL and PostgreSQL compatible database engine for RDS that was built for the cloud.
Amazon Aurora
An on-demand and auto-scaling version of Amazon Aurora that does not require managing the underlying infrastructure.
This service is commonly used in a serverless
architecture.
Amazon Aurora
Serverless for RDS
Fully managed NoSQL database service that has extremely low latency and scaling based on configuration.
This service is commonly used in a serverless
architecture.
Amazon DynamoDB
Managed petabyte scale data warehousing solution on AWS.
Amazon Redshift
Service for querying exabytes of data stored in Amazon S3.
Amazon Redshift
Spectrum
Fully-managed in-memory data store that supports memcached and Redis engines.
Amazon Elasticache
Service that enables you to move your data (from popular commercial and open source databases) easily onto the cloud.
This service can assist in data migration into the cloud from your data center.
AWS Database
Migration Service
(DMS)
Document database with MongoDB compatibility. You would leverage this if you needed to support a MongoDB database on AWS.
Amazon DocumentDB
In-memory database that is Redis-compatible and provides very low latency.
Amazon MemoryDB
for Redis
Service that provides a graph database on AWS. Graph databases are ideal for storing connections between items, such as social network connections.
Amazon Neptune
Database service that enables you to store data that is time-based. A simple example of this type of data would be temperature data coming from a sensor that needs to be stored at the specific time when a reading took place.
This service can be used in a serverless architecture.
Amazon Timestream
Security Token Service (STS) creates and provides trusted users with temporary security credentials that expire and cannot be reused.
Security Token Service (STS)
