Six Pillars Flashcards
What are the Six Pillars?
-Operational Excellence
-Security
-Reliability
-Performance Efficiency
-Cost Optimization
-Sustainability
What is AWS Well-Architectured Framework?
AWS Well-Architected Framework is simply a body of knowledge that is compiled in a single PDF document or included in the online AWS documentation. It contains specific best practices, design patterns, and other concepts that you can use to review your existing cloud architecture. The AWS Well-Architected Framework contains key architectural questions that can help you verify and measure the quality of your systems.
What kind of questions are asked when considering AWS Well Architected?
-“How do you protect your data at rest?”
-“How do you protect your data in transit?”
-“How do you manage identities for people and machines?”
-and so on and so forth.
What is Operational Excellence?
The ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures.
What are four best practice areas and tools for Operational Excellence?
-Organization – AWS Cloud Compliance, AWS Trusted Advisor, AWS Organizations
-Prepare – AWS Config
-Operate – Amazon CloudWatch
-Evolve – Amazon Elasticsearch Service
What is a Key AWS service for Operational Excellence?
AWS CloudFormation for creating templates. (See AWS Management Tools Cheat Sheet)
What is Security?
The ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies.
What are six best practice areas and tools for Security?
-Security – AWS Shared Responsibility Model, AWS Config, AWS Trusted Advisor
-Identity and Access Management – IAM, Multi-Factor Authentication, AWS Organizations
-Detective Controls – AWS CloudTrail, AWS Config, Amazon GuardDuty
-Infrastructure Protection – Amazon VPC, Amazon CloudFront with AWS Shield, AWS WAF
-Data Protection – ELB, Amazon Elastic Block Store (Amazon EBS), Amazon S3, and Amazon Relational Database Service (Amazon RDS) encryption, Amazon Macie, AWS Key Management Service (AWS KMS)
-Incident Response – IAM, Amazon CloudWatch Events
What is a Key AWS service for Security?
Key AWS service: AWS Identity and Access Management (IAM)
What is Reliability?
The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues.
What are four best practice areas and tools for Reliability?
-Foundations – IAM, Amazon VPC, AWS Trusted Advisor, AWS Shield
-Change Management – AWS CloudTrail, AWS Config, Auto Scaling, Amazon CloudWatch
-Failure Management – AWS CloudFormation, Amazon S3, AWS KMS, Amazon Glacier
-Workload Architecture – AWS SDK, AWS Lambda
What is a Key AWS service for Reliability?
Key AWS service: Amazon CloudWatch
What is Performance Efficiency?
The ability to use computing resources efficiently to meet system requirements, and to maintain that efficiency as demand changes and technologies evolve.
What are 4 best practice areas for performance efficiency?
-Selection – Auto Scaling for Compute, Amazon EBS and S3 for Storage, Amazon RDS and DynamoDB for Database, Route53, VPC, and AWS Direct Connect for Network
-Review – AWS Blog and What’s New section of the website
-Monitoring – Amazon CloudWatch
-Tradeoffs – Amazon Elasticache, Amazon CloudFront, AWS Snowball, Amazon RDS read replicas.
What is a Key AWS service for Performance Efficiency?
Amazon CloudWatch
