She Builds CloudUp Q&A

Divya Balineni
Sonia
18 August 2021

Julie
Mahankali
Syllabus
 EXAM TIPS – check out the She Builds study group for more exam tips

Module 1 – Module 3
1. Understand the 5 requirements of cloud computing
2. Understand the differences between Regions, AZs, and edge locations
3. Know what level of resilience an AWS service has
4. Dive deeper into cost optimization (appears throughout the exam)
5. Understand the differences between HA, FT, and DR
6. Know two types of scaling: vertical and horizontal
7. Understand elasticity
8. Understand differences between public and private services
9. Understand the different support plans in AWS
Any Questions?
how should be go about studying the models?
what is another name for on-premises
deployment?

how are people eligible for vouchers?

where can we find information for the

What is Cloud Computing? solutions architect program

What are Containers and how

its used ?Tell more about ECS What type of entry level/associate jobs can I
and EKS . apply for with the AWS Cloud Practitioner
Certification?
 EXAM TIPS
Module 4 & Module 5
1. Know IAM: roles, policies, users, groups, access, and AWS
Organizations
2. Understand the fundamentals of an Amazon VPC
3. Know difference between default and custom Amazon VPC
4. What resiliency does a subnet have?
5. Understand the differences between network access control lists and
security groups
6. Understand gateways
7. Understand VPC peering and transitive peering (Transit Gateway)
8. Understand VPC endpoints
9. Know what AWS services can be used for hybrid connectivity (VPN &
DX)
 EXAM TIPS
Module 4 & Module 5
1. Understand EC2 behaviors
2. Know differences between EC2 storage options
3. Understand auto scaling
4. Know different storage options and use cases
5. Know databases and use cases for each
6.
7.
 EXAM TIPS
Module 6 & Module 7
1. (some) CloudWatch metrics are collected by default
2. Some CloudWatch metrics need a CloudWatch agent installed
3. CloudTrail does not log in real time
4. CloudTrail is enabled by default, and by default only stores management
events
5. High level overview of Config
6. VPC Flow Logs do not monitor traffic, only monitors the traffic meta
data
7. VPC Flow Logs are not logged in real time
8. VPC Flow Logs do not capture all traffic, know what traffic is excluded
9. KMS: CMKs are created from resource key policies and key policies and
IAM policies
 EXAM TIPS
Module 6 & Module 7
1. Understand fundamentals of encryption
2. KMS allows roles separation
3. CMKs are isolated to a Region
4. AWS Managed Keys are created by AWS, Customer Managed Keys are
created by us and are more configurable
5. KMS supports key rotation
6. Know what is SSM Parameter Store
7. Know you can have plain text and encrpyted parameters
8. Keywords: GetParameters or GetParametersByPath API
9. Know how Secrets Manager and SSM Parameter Store differ
10. Best practice to add Hardware Security Moduel (HSM) in each AZ
11.
 EXAM TIPS
Module 6 & Module 7
1. Choose proxy servers if you have a questions that cannot be completed
with an AWS service
2. Know what a firewall is and understand how it works with the OSI
model
3. WAF can be deployed with ALB, API Gateway, and CloudFront
4. What do WAFs help protect against
5. Know AWS Firewall Manager, AWS Shield, and AWS Shield Advance
6.