Quick Exam Guide

Analytics Services
int
o
Service Name What is it? When to Use? How to Use in Real World?

e P
https://www.youtube.com/@T3Ptech

h
Query service allowing analysis of data in Ideal for querying vast datasets stored in S3 without Analyzing log files stored in S3 using SQL-like
Amazon Athena
Amazon S3 using SQL. the need for complex ETL processes. queries

o T
Big data processing framework for
Best suited for processing large datasets and

T
processing vast amounts of data across Processing and analyzing vast amounts of
Amazon EMR performing distributed data analysis using frameworks
dynamically resizable Amazon EC2 clickstream data

y
like Apache Spark, Hadoop, etc.
instances.

Amazon Kinesis Data

log
Service for loading streaming data into data
Use for streaming data ingestion into various
destinations such as S3, Redshift, Elasticsearch, etc.,
Collecting and loading streaming data into Amazon

o
Firehose stores and analytics tools. S3 for analytics
with simplicity and scalability.

Amazon Kinesis Data

hn
Platform for building custom applications Optimal for real-time data processing and analysis
Capturing and analyzing IoT device data in real-

c
that process or analyze streaming data in where low latency is crucial, like IoT data, clickstreams,
Streams time

e
real-time. and log monitoring.

- T
Fully managed Elasticsearch service for
Amazon OpenSearch Useful for full-text search, log analytics, real-time
deploying, securing, and scaling Creating a search solution for a web application
Service application monitoring, and more.

P
Elasticsearch clusters.

T3
Amazon QuickSight
Cloud-powered business intelligence service
for visualizing data and generating insights.
Great for creating interactive dashboards and
generating business insights from various data
sources.
Creating dashboards to monitor sales performance
or operational metrics
 int Compute Services
Service Name What is it?

Po When to Use? How to Use in Real World?

he
Fully managed service for deploying
Perfect for quickly deploying web applications or APIs Deploying a web application without managing
https://www.youtube.com/@T3Ptech

T
AWS App Runner containerized applications without
without worrying about the underlying infrastructure. infrastructure
managing infrastructure.

To Ideal for various workloads requiring control over the

y
Scalable virtual servers on AWS, allowing
Amazon EC2 underlying infrastructure, scalability, and Running a website on a virtual server
users to run applications.

g
customization.

lo
Automates the scaling of EC2 instances Best for applications with varying traffic patterns,

o
Amazon EC2 Auto Handling traffic spikes by automatically adding more
based on demand to maintain performance ensuring optimal performance and cost-efficiency by
Scaling EC2 instances

n
and reduce costs. adjusting the number of instances automatically.

EC2 Image Builder

ch
Service to create and maintain secure OS Useful for automating the creation, management, and Creating golden images with pre-installed software

e
images for EC2 instances. distribution of customized EC2 machine images. configurations for consistent EC2 launches

- T
Service for deploying and scaling web
Ideal for quickly deploying web applications without
Deploying a web app without worrying about underlying

P
AWS Elastic Beanstalk dealing with the underlying infrastructure
applications and services easily. infrastructure
complexities.

T3
AWS Serverless
Application Repository
Storage and discovery of serverless
applications and components.
Great for sharing and discovering serverless
applications, enabling reuse of application
components across different projects.
Sharing a serverless application template across
multiple teams or projects
 Containers Services
int
o
Service Name What is it? When to Use? How to Use in Real World?

AWS App2Container

e P
Tool for containerizing applications and Ideal for modernizing existing applications by Converting a monolithic application into microservices

h
migrating them to AWS ECS or EKS. containerizing them and moving to ECS or EKS. for scalability
https://www.youtube.com/@T3Ptech

AWS Copilot

o T
CLI tool for building, deploying, and
managing containerized applications on
Perfect for developers to streamline the development
and deployment of containerized applications on
Managing containerized microservices applications with

T
ease
AWS. AWS.

gy
Fully managed Docker container registry for Suitable for storing and managing container images
Amazon Elastic
storing, managing, and deploying container securely, allowing seamless deployment to ECS, EKS, Hosting Docker images for a microservices architecture

o
Container Registry

l
images. and on-premises environments.

o
Amazon Elastic Highly scalable, high-performance container Ideal for deploying and managing containers at scale Running a distributed application on Docker containers

n
Container Service orchestration service. with deep integration to AWS services. across multiple EC2 instances

h
Managed Kubernetes service for deploying, Best for running Kubernetes-based applications,

c
Amazon Elastic Managing containerized applications using Kubernetes
managing, and scaling containerized providing control and flexibility while managing

e
Kubernetes Service clusters
applications using Kubernetes. infrastructure.

T
Suitable for organizations wanting to run Kubernetes

-
Kubernetes distribution derived from EKS Setting up Kubernetes clusters on-premises or in other
Amazon EKS Distro clusters in their data centers or on other clouds while
and open-source Kubernetes. cloud environments
staying consistent with EKS.

3P
Perfect for running containers without provisioning or
Serverless compute engine for running Running a microservices architecture without worrying

T
AWS Fargate managing servers, suitable for microservices
containers without managing infrastructure. about the underlying infrastructure
architectures.

Fully managed Red Hat OpenShift service Ideal for organizations leveraging OpenShift to develop
Red Hat OpenShift Deploying and managing applications with OpenShift on
providing Kubernetes platform capabilities and deploy applications on AWS, ensuring
Service on AWS AWS
on AWS. compatibility and integration with AWS services.
 Database Services
int
o
Service Name What is it? When to Use? How to Use in Real World?

Amazon Aurora

e P
MySQL and PostgreSQL-compatible
relational database
Suitable for applications demanding high-performance Running a scalable eCommerce application with high
databases with compatibility to MySQL or PostgreSQL. availability

h
https://www.youtube.com/@T3Ptech

T
Best for intermittent or unpredictable workloads,
Amazon Aurora Handling varying workloads in a serverless environment
On-demand, auto-scaling Aurora database providing cost savings through auto-scaling and paying

o
Serverless v2 with Aurora
only for consumed resources.

T
Ideal for migrating databases to AWS with minimal
AWS Database

y
Migrate databases to AWS easily downtime and ensuring continuous data replication Migrating an on-premises database to AWS
Migration Service
during migration.

og
Fully managed MongoDB-compatible Suitable for applications requiring scalability, Building applications using MongoDB without managing
Amazon DocumentDB

l
document database performance, and compatibility with MongoDB. the database infrastructure

o
Ideal for applications with predictable and low-latency Storing and querying high-traffic user profile data for a

n
Amazon DynamoDB Fully managed NoSQL database service
requirements, such as gaming, IoT, and mobile apps. gaming application

ch
Suitable for improving the performance of applications Speeding up data retrieval by caching frequently
Amazon ElastiCache In-memory caching service

e
by caching frequently accessed data. accessed information

T
Ideal for applications requiring sub-millisecond
Amazon MemoryDB for Fully managed Redis-compatible in-memory Implementing a leaderboard system for a multiplayer

-
latency, durability, and scalability with Redis
Redis database online game using Redis
compatibility.

P
Suitable for deploying, managing, and scaling

3
Hosting an eCommerce application's MySQL database
Amazon RDS Managed relational database service relational databases without the administrative

T
on AWS
overhead.

Ideal for analyzing large-scale datasets and generating Analyzing historical sales data to make business
Amazon Redshift Fully managed data warehouse service
business insights using SQL queries. decisions
 Developer Tools (Part 1)
int
o
Service Name What is it? When to Use? How to Use in Real World?

P
Command-line tool for interacting with AWS

e
Useful for scripting, automation, and managing AWS Automate deployments or manage AWS resources
AWS CLI services, enabling script automation, and
resources. through scripts for streamlined operations.

h
managing resources.
https://www.youtube.com/@T3Ptech

T
Infrastructure as Code (IaC) framework
AWS Cloud Ideal for creating and managing AWS resources using
allowing developers to define AWS Define AWS infrastructure using code, enabling version

o
Development Kit (AWS programming languages like TypeScript, Python, or
resources using familiar programming control and reuse across projects.

T
CDK) Java.
languages.

y
Browser-based shell to access AWS
Useful for quick AWS resource management without Access and manage AWS resources directly from the

g
AWS CloudShell management console and AWS services
local setup. browser without configuring local environments.
through a command-line interface.

lo
Fully managed artifact repository enabling
Suitable for securely storing and sharing software Store and manage software packages securely, allowing

o
AWS CodeArtifact organization, storage, and sharing of
artifacts across development teams. teams to share dependencies efficiently.

n
software packages.

h
Fully managed build service for compiling
Use for automating build processes, ensuring Automate build processes, such as compiling and

c
AWS CodeBuild source code, running tests, and producing
consistent and scalable builds. testing, to streamline software delivery.
software packages.

Te
Git-based source control service to securely Suitable for securely storing and version-controlling Host private Git repositories, manage code, and
AWS CodeCommit

-
store and manage code repositories. code with collaboration features. collaborate with team members securely.

P
Automated deployment service facilitating Ideal for automating application deployments, Automate deployments of applications to different
AWS CodeDeploy

3
code deployments to various AWS services. ensuring reliable and rapid release cycles. environments, improving release management.

T
Machine learning-powered service for
Use for improving code quality, identifying issues, and Automatically review code for best practices,
Amazon CodeGuru automated code reviews and application
optimizing application performance. performance bottlenecks, and potential improvements.
performance recommendations.
 Developer Tools (Part 2)
Service Name What is it?

int When to Use? How to Use in Real World?

AWS CodePipeline

P o
Continuous integration and continuous
delivery (CI/CD) service for automating
Suitable for orchestrating automated software release
Create and manage CI/CD pipelines to automate
software delivery processes, ensuring consistency and

e
workflows, from source code to deployment.
build, test, and deployment pipelines. efficiency.

h
https://www.youtube.com/@T3Ptech

Integrated development environment (IDE)

T
Ideal for quickly setting up and managing AWS Initiate and manage development projects, collaborate
AWS CodeStar facilitating project creation, management,
development projects with collaboration features. with team members, and deploy applications to AWS.

o
and deployment on AWS.

T
Service enabling controlled chaos Simulate various failure scenarios in AWS infrastructure
AWS Fault Injection Use to simulate faults and test the resilience of
engineering experiments to test application to ensure application resilience and recovery

y
Simulator (AWS FIS) applications running on AWS infrastructure.
resilience and fault tolerance. mechanisms.

g
Collection of software development kits

o
Essential for developers to easily integrate AWS Use SDKs to interact with AWS services
(SDKs) and tools for various programming

l
AWS SDKs and Tools services into their applications using preferred programmatically, enabling seamless integration with
languages, simplifying interaction with AWS

o
languages. applications.
services.

n
Service for tracing, analyzing, and debugging
Useful for identifying performance issues and Trace requests across distributed systems, identify

h
distributed applications, providing insights
AWS X-Ray optimizing application performance in distributed performance bottlenecks, and troubleshoot application

c
into application performance and
systems. issues.

e
bottlenecks.

Application Integration Services

- T
P
Service Name What is it? When to Use? How to Use in Real World?

3
Fully managed integration service for Ideal for automating data transfer between different

T
Syncing data between Salesforce and Amazon S3 for
Amazon AppFlow securely transferring data between SaaS applications without needing to write custom
analytics
applications and AWS services. integration code.
Best for building event-driven architectures and
Serverless event bus service for connecting Triggering Lambda functions based on events from
Amazon EventBridge simplifying application integrations by decoupling
applications using events. various sources
services via event-driven communication.
 Management & Governance (Part 1)
int
o
Service Name What is it? When to Use? How to Use in Real World?

P
Service for automatically adjusting AWS resources to maintain Maintaining performance with varying Automatically adjusting EC2 instance count

e
AWS Auto Scaling
application performance at a desired level and optimize costs. workloads based on CPU utilization

h
IaC service allowing creation and management of AWS resources Defining a cloud infrastructure using a YAML or
https://www.youtube.com/@T3Ptech

T
Automating resource provisioning and
AWS CloudFormation using templates, enabling consistent and reproducible JSON template and deploying it using
management
infrastructure. CloudFormation

AWS CloudTrail

To
Service providing visibility into user and resource activity by
recording AWS API calls for auditing, compliance, and governance.
Tracking user activity and changes in
AWS resources
Monitoring changes made to IAM policies and
permissions using CloudTrail logs

gy
Monitoring and observability service for collecting and tracking Monitoring performance and health of Setting alarms to notify when CPU utilization
Amazon CloudWatch

o
metrics, logs, and events from AWS resources and applications. AWS resources exceeds a certain threshold on EC2 instances

l
Amazon CloudWatch Service for centralizing logs from AWS resources and applications, Collecting, monitoring, and storing log Storing application logs for auditing and

o
Logs enabling easy monitoring, analysis, and troubleshooting. data troubleshooting purposes

n
Service analyzing resource utilization to recommend optimal AWS

h
AWS Compute Optimizing application performance Analyzing historical usage data to rightsize EC2
resources and configurations, improving performance and reducing

c
Optimizer and costs instances for cost savings
costs.

Te
Service for assessing, auditing, and evaluating the configurations of Assessing, auditing, and evaluating Ensuring compliance by monitoring and
AWS Config
AWS resources, maintaining compliance and security. resource configurations evaluating AWS resource configurations

P
AWS Control Tower
- Service for setting up and governing a secure, compliant multi-
account AWS environment following best practices.
Managing multiple AWS accounts and
resources
Establishing a baseline security and compliance
configuration across multiple AWS accounts

T3
AWS Health

AWS License Manager

Service providing personalized information and recommendations
about AWS services' operational health.

Service managing software licenses and enforcing license

Monitoring the health of AWS services
and resources
Receiving notifications about AWS service
disruptions or issues

Tracking and controlling software usage Ensuring compliance with software licensing
configurations across AWS resources. and licenses agreements on AWS
 Management & Governance (Part 2)
int
o
Service Name What is it? When to Use? How to Use in Real World?

P
Amazon Managed Service offering managed Grafana for visualizing Creating dashboards to monitor AWS resource

e
Data visualization and monitoring
Grafana and analyzing metrics from multiple data sources. performance using Managed Grafana

h
https://www.youtube.com/@T3Ptech

T
Amazon Managed Managed Prometheus service for monitoring Collecting and visualizing application metrics using
Monitoring and alerting using Prometheus
Service for Prometheus containerized applications at scale. Managed Service for Prometheus

o
Configuration management service automating

T
Automating deployment and scaling of applications on
AWS OpsWorks server provisioning, configuration, and Managing applications and infrastructure
AWS using OpsWorks

y
deployment.

g
Service for centrally managing and governing
Centralized management of multiple AWS Managing permissions and policies across multiple AWS

o
AWS Organizations multiple AWS accounts, simplifying management

l
accounts accounts
and security at scale.

o
Service for automating and managing
Standardizing and automating application Simplifying deployment of microservices with

n
AWS Proton infrastructure provisioning and code deployments
deployments predefined templates using Proton

h
for serverless and container-based applications.

c
Service providing a unified view of multiple AWS
Tracking and managing fault tolerance strategies across

e
AWS Resilience Hub accounts' readiness and resilience against Monitoring and managing AWS service resilience
AWS services
disruptions.

- T
Service for creating and managing catalogs of
Standardizing and managing IT services across Offering a catalog of pre-approved AWS resources for
AWS Service Catalog approved IT services, allowing control and
an organization easy deployment

P
standardization of deployments.

3
Collection of services for managing AWS
Automating operational tasks and configuration Patching and updating EC2 instances using Systems

T
AWS Systems Manager resources, automating tasks, and configuring
management Manager Run Command
operational parameters.
Service offering best practice recommendations
Recommending best practices for cost Identifying and reducing underutilized resources on
AWS Trusted Advisor for optimizing AWS environments in terms of cost,
optimization AWS
performance, security, and fault tolerance.
 Networking and Content Delivery
Service Name What is it?

int When to Use? How to Use in Real World?

Amazon API Gateway

Po
Fully managed service for creating, publishing,
maintaining, monitoring, and securing APIs at
Use to create and manage APIs, enabling secure Create, publish, and secure APIs at scale, facilitating
and efficient communication between communication between different applications and

e
scale. applications and services. services.

h
https://www.youtube.com/@T3Ptech

Managed VPN service allowing secure access to Ideal for securely connecting users to AWS Provide secure access to AWS resources and on-

T
AWS Client VPN AWS resources and on-premises networks from resources and on-premises networks from premises networks for users working from remote

o
any location. remote locations. locations.

T
Content delivery network (CDN) service delivering Suitable for accelerating content delivery
Distribute content with low latency and high transfer
Amazon CloudFront data, videos, applications, and APIs with low globally, reducing latency, and improving user

y
speeds, improving performance for end users globally.
latency and high transfer speeds. experience.

g
Service for automatically distributing incoming Use to ensure fault tolerance and scalability by
Elastic Load Balancing Distribute incoming application traffic across multiple

o
application traffic across multiple targets, distributing incoming traffic across multiple

l
(ELB) targets, ensuring high availability and fault tolerance.
enhancing fault tolerance and scalability. targets.

o
Service enabling private connectivity between Suitable for securely accessing services hosted Establish private connections between VPCs, AWS

n
AWS PrivateLink VPCs, AWS services, and on-premises applications on AWS or on-premises through private services, and on-premises applications, ensuring

h
securely. connectivity. security.

c
Scalable and highly available DNS service for Ideal for managing DNS routing, domain Manage DNS routing, domain registration, and health

e
Amazon Route 53 routing traffic to internet resources and AWS registration, and health checking for internet- checks for applications, ensuring high availability and

T
services. facing applications. routing.

-
Managed VPN service enabling secure Useful for securely connecting on-premises Establish secure communication between on-premises
AWS Site-to-Site VPN communication between on-premises networks networks to AWS infrastructure over encrypted networks and AWS infrastructure using encrypted

P
and AWS through encrypted connections. connections. connections.

3
Service simplifying network connectivity between Suitable for managing network traffic at scale, Simplify network connectivity between VPCs, VPNs, and

T
AWS Transit Gateway VPCs, VPNs, and on-premises networks, managing connecting multiple VPCs and on-premises on-premises networks, managing traffic efficiently at
traffic at scale. networks seamlessly. scale.
Service enabling creation of isolated virtual Ideal for designing and controlling network
Create isolated virtual networks, define IP addressing,
Amazon VPC networks within AWS, providing control over IP settings, ensuring secure and isolated
subnets, and security settings for AWS resources.
addressing, subnets, and security. environments within AWS.
 Storage Services
int
o
Service Name What is it? When to Use? How to Use in Real World?

P
Use for automating and managing backups Create and manage backup plans to protect data stored
AWS Backup Centralized backup service for AWS resources.

e
across various AWS services. in different AWS resources.

h
Amazon Elastic Block Use for durable and low-latency block storage Attach persistent block storage to EC2 instances for
https://www.youtube.com/@T3Ptech

Block-level storage volumes for EC2 instances.

T
Store (Amazon EBS) for EC2 instances. data storage.

o
Ensure business continuity by replicating on-premises
AWS Elastic Disaster Disaster recovery service for on-premises Use for replicating on-premises applications to

T
applications to AWS for quick recovery in case of
Recovery applications. AWS for disaster recovery.
disasters.

y
Amazon Elastic File Use for scalable and highly available file storage Share file data across multiple EC2 instances with

g
Fully managed file storage for EC2 instances.
System (Amazon EFS) for EC2 instances. scalable storage capacity.

lo
Accelerate data processing by leveraging high-
High-performance file system for compute- Use for high-performance file storage for

o
Amazon FSx for Lustre performance file storage optimized for compute-
intensive workloads. compute-intensive applications.
intensive workloads.

hn
Amazon FSx for NetApp Use for enterprise-grade file storage with Utilize enterprise-grade file storage with advanced data
Fully managed ONTAP file storage service.

c
ONTAP NetApp ONTAP features. management capabilities.

e
Amazon FSx for Use for scalable and cost-effective file storage Store and manage data cost-effectively using OpenZFS
OpenZFS-based file storage service.

T
OpenZFS with OpenZFS features. file storage.

-
Amazon FSx for Fully managed Windows-native file storage Use for Windows-compatible file storage with Store and access Windows-based file data with native

P
Windows File Server service. high availability and performance. compatibility and high performance.

3
Object storage service for scalable and durable Use for storing and retrieving any amount of Store and retrieve objects (files, images, documents)
Amazon S3

T
data storage. data from anywhere. securely in S3 buckets.
Low-cost archival storage with flexible retrieval Use for long-term storage of data with infrequent Archive data at a low cost and retrieve when needed
Amazon S3 Glacier
options. access. with flexible retrieval options.
Use for integrating on-premises environments Seamlessly connect on-premises environments with
AWS Storage Gateway Hybrid cloud storage integration service.
with cloud storage. cloud storage using storage gateway configurations.
 int
Serverless Services
Service Name What is it?

Po When to Use? How to Use in Real World?

e
Utilize Lambda to execute code in response to

h
Runs code without provisioning or Use for executing code in response to events from various AWS services or custom
https://www.youtube.com/@T3Ptech

T
AWS Lambda
managing servers. events or triggers. triggers, allowing serverless, event-driven

o
architectures.

T
Use SAM to simplify the creation, deployment,
AWS Serverless

y
Framework for building serverless Ideal for simplifying the deployment of and management of serverless applications
Application Model (AWS

g
applications. serverless applications. using AWS CloudFormation templates and
SAM)

o
predefined configurations.

l
Implement SNS for pub/sub messaging

o
Amazon Simple
Pub/sub messaging service for Use for event-driven communication between microservices, distributed systems, or

n
Notification Service
microservices, distributed systems, etc. between services. applications, enabling event-driven

h
(Amazon SNS)
communication and coordination.

ec
Use SQS to decouple and scale microservices

T
Amazon Simple Queue Ideal for decoupling and scaling by enabling asynchronous message
Fully managed message queuing service.

-
Service (Amazon SQS) microservices. communication between components, ensuring
reliability and scalability.

P
Employ Step Functions to create visual

3
workflows that coordinate multiple AWS

T
Orchestrates serverless workflows using Use for coordinating multiple AWS
AWS Step Functions services, enabling the orchestration of tasks
visual workflows. services in workflows.
and managing complex workflows in a
serverless environment.
 Security, Identity, and Compliance (Part 1)
int
o
Service Name What is it? When to Use? How to Use in Real World?
AWS Certificate
Manager (ACM)

e P
Manages SSL/TLS certificates for AWS resources.
Use to simplify certificate management for AWS Securely deploy SSL/TLS certificates to web servers or
services and deploy SSL/TLS certificates. load balancers.

h
https://www.youtube.com/@T3Ptech

T
Protect sensitive data and comply with strict security
Ideal for regulatory compliance and secure key
AWS CloudHSM Offers dedicated hardware security module (HSM) regulations by securely storing and using cryptographic

o
storage.
keys.

T
Provides authentication, authorization, and user Use for user authentication and authorization in Implement user sign-up, sign-in, and access control in

y
Amazon Cognito
management. applications. applications.

Amazon Detective

log
Analyzes, investigates, and identifies security
issues.
Ideal for investigating security incidents and
breaches.
Investigate and resolve security incidents through
automated analysis.

AWS Directory Service

no
Manages and connects AWS resources to an Useful when integrating AWS resources with Seamlessly extend on-premises AD to AWS services for

h
existing on-premises directory. existing on-premises directories. user authentication and access management.

ec
Use for continuous monitoring and threat Detect and respond to security threats by analyzing
Amazon GuardDuty Intelligent threat detection service.
detection. AWS logs and network activity.

AWS IAM Identity

Center (AWS Single

- T Centrally manages access to multiple AWS Ideal for managing access across multiple AWS Centrally manage user access and permissions across

P
accounts. accounts. various AWS accounts and services.
Sign-On)

T3
AWS Identity and Access
Management (IAM)

Amazon Inspector
Manages access to AWS services and resources.

Automated security assessment service.

Essential for controlling access within AWS
environments.

Useful for assessing application security and

compliance.
Define fine-grained access control and permissions for
users, groups, and roles.

Automatically assess security and compliance of EC2

instances and applications.
 Security, Identity, and Compliance (Part 2)
int
o
Service Name What is it? When to Use? How to Use in Real World?
AWS Key Management
Service (AWS KMS)

e P
Manages encryption keys for other AWS services.
Use for secure encryption key generation and
management.
Encrypt data and manage keys to maintain control over
data access and security.

h
https://www.youtube.com/@T3Ptech

T
Ideal for discovering, classifying, and protecting Automatically discover and protect sensitive data using
Amazon Macie AI-powered data security and privacy service.

o
sensitive data. machine learning.

T
Managed firewall service for filtering network Set up and manage network security policies to filter

y
AWS Network Firewall Use for protecting network infrastructure.
traffic. traffic based on customizable rules.

AWS Resource Access

Manager (AWS RAM)

log
Shares AWS resources across AWS accounts.
Useful for resource sharing across multiple
accounts.
Easily share resources across multiple accounts for
centralized management.

AWS Secrets Manager

no
Manages and rotates secrets and credentials.
Ideal for secure storage and automated rotation Store and manage credentials securely and automate

h
of secrets. their rotation.

ec
Provides a comprehensive view of security Use for centralized security monitoring and Gain insights and take action on security and
AWS Security Hub

T
posture. compliance checking. compliance issues across AWS environments.

-
AWS Security Token Useful for granting limited and temporary Enable users or services to temporarily access AWS
Issues temporary security credentials.

P
Service (AWS STS) access. resources with limited permissions.

T3
AWS Shield

AWS WAF
Managed DDoS protection service.

Web Application Firewall for filtering HTTP traffic.

Essential for safeguarding against DDoS attacks.

Use for protecting web applications from

Automatically detect and mitigate DDoS attacks to
maintain the availability of applications.

Protect web applications from common attacks by

common web exploits. setting up rules and filters.
 20 Hands-on Labs t
o in
AWS Certified DevOps Engineer - Professional exam
e P
T
Domain 1: SDLC Automationh(22%)
To
1 y
Setting Up a Basic CI/CD Pipeline: Use AWS CodePipeline, CodeBuild, and

g
o
CodeDeploy to create a simple CI/CD pipeline for a sample application.

ol
h n
c
Advanced Pipeline Configuration: Explore features like manual approval steps,
2
Te
integration with external tools, and custom actions within CodePipeline.

P -
3 T3
Deploying Microservices with AWS Tools: Create a CI/CD pipeline for a
microservices architecture using AWS CodePipeline and CodeDeploy.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
o in
AWS Certified DevOps Engineer - Professional exam
e P
T h
Domain 2: Configuration Management and IaC (17%)
To
4 g y
Infrastructure as Code with AWS CloudFormation: Deploy an infrastructure

o
stack using CloudFormation templates to create resources like EC2 instances,

o l
VPC, and S3 buckets.

h n
5 c
AWS Systems Manager (SSM) Automation: Automate routine tasks using

Te
Systems Manager Automation documents for instance configuration, patching,

-
and maintenance.

6T3
P
Configuration Management with Ansible or Chef: Set up and configure a basic
infrastructure using Ansible or Chef playbooks.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
o i
AWS Certified DevOps Engineer - Professionaln exam
e P
T h
Domain 3: Resilient Cloud Solutions (15%)
T o
7 y
Auto Scaling and Load Balancing: Create an Auto Scaling group and associate it

g
o
with an Elastic Load Balancer (ELB) to manage traffic across instances.

o l
h n
8 c
Implementing Multi-AZ Deployments: Deploy a highly available application

Te
across multiple Availability Zones (AZs) using CloudFormation.

P -
9T3
Disaster Recovery Setup: Design a disaster recovery plan using services like
AWS Backup, AWS Import/Export, and cross-region replication.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
o in
AWS Certified DevOps Engineer - Professional exam
e P
Th
Domain 4: Monitoring and Logging (15%)
To
10
g y
Setting Up CloudWatch Metrics and Alarms: Configure CloudWatch to monitor

o
resource usage, set alarms, and trigger actions based on specific thresholds.

o l
h n
c
Centralized Logging with CloudTrail and CloudWatch Logs: Enable CloudTrail
11
Te
for auditing API calls and aggregate logs in CloudWatch Logs for analysis.

P -
12T3
Application Performance Monitoring with X-Ray: Instrument an application
with AWS X-Ray to trace requests and identify performance bottlenecks.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
o in
AWS Certified DevOps Engineer - Professional exam
e P
T h
Domain 5: Incident and Event Response (14%)
To
13
gy
Configuring AWS Config Rules: Set up AWS Config rules to ensure compliance

o
and trigger actions based on rule violations.

o l
h n
c
Automating Incident Response with Lambda: Create Lambda functions to
14
Te
automate responses to specific events detected in CloudWatch or Config.

P -
15T3
Practice Incident Response: Simulate incidents using AWS services like Systems
Manager Incident Manager and follow an incident response plan.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
o in
AWS Certified DevOps Engineer - Professional exam
e P
T h
Domain 6: Security and Compliance (17%)
To
16
gy
IAM Roles and Policies: Create IAM roles, policies, and manage permissions for

o
users, groups, and roles following the principle of least privilege.

o l
h n
c
Encryption and Key Management: Implement encryption using AWS KMS for
17
Te
data at rest and in transit. Rotate keys and manage key policies.

P -
18T3
Compliance Checks with AWS Config and Inspector: Use AWS Config and
Inspector to perform compliance checks and security assessments.
https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree
 20 Hands-on Labs t
oin
AWS Certified DevOps Engineer - Professional exam
e P
T h
General Labs Covering Multiple Domains
To
19
g y
End-to-End Application Deployment: Build a complete application deployment

o
using a combination of services from various domains.

o l
h n
c
Advanced Troubleshooting Scenarios: Simulate complex scenarios involving
20
Te
scaling issues, configuration errors, and security breaches to troubleshoot and

-
resolve.

3 P
T https://www.youtube.com/@T3Ptech https://t.me/LearnDevOpsForFree