AWS Certified Solutions Architect - Associate Level

Esse post é dedicado a você que pretende aplicar para prova de certificação global da AWS.

Itens de leitura obrigatória:

• Página oficial sobre a certificação
• Post bem detalhado falando sobre o programa e prova
• Exemplo de questões da prova
• Dicas sobre a prova
• Whitepapers
• Overview of Amazon Web Services
• Overview of Security Processes
• AWS Risk and Compliance
• Storage Options in the AWS Cloud
• Storage Use Cases
• Designing Fault-Tolerant Applications in the AWS Cloud
• Architecting for the AWS Cloud: Best Practices

Ao ler a documentação, tenha em mente que a prova será dividida da seguinte forma:

• 60% - Designing highly available, cost efficient, fault tolerant, scalable systems
• How to design cloud services
• Planning and design 
• Monitoring
• Familiarity with:
• Best practices
• Developing to Client Specifications including pricing/cost (i.e. on Demand vs. Reserved vs. Spot, RTO & RPO DR Design)
• Architectural trade-off decisions (high availability VS cost, RDS VS installing your own DB on EC2)
• Integrating with existing development environments and building scalable architecture
• Elasticity and scalability
• 10% - Implementation/Deployment
• Configure an AMI (Amazon Machine Image)
• Operate and extend service management in the private cloud
• Configure compliance in the private & public cloud
• Launching instances in a variety of geographical regions
• 20% - Data Security
• Cloud Security Best Practices
• How to build and use a threat model
• How to build and use a data flow diagram for risk management
• Use cases
• Abuse Cases (Negative use cases)
• Security Architecture with AWS
• Shared Security Responsibility Model
• AWS Platform Compliance
• AWS security attributes (customer workloads down to physical layer)
• Security Services
• IAM
• VPC
• CIA & AAA models, ingress vs. egress filtering; and which AWS services and features fit
• “Core” EC2 and S3 security feature sets 
• Incorporating common conventional security products (Firewall, IDS:HIDS/NIDS, SIEM, VPN)
• Design Patterns
• DDOS mitigation
• Encryption solutions
• Complex access controls (building sophisticated security groups, ACLs, etc.)
• CloudWatch for the security architect
• Disaster Recovery
• Recovery time objective
• Recovery point objective 
• Amazon Elastic Block Store
• AWS Import/Export
• AWS Storage Gateway
• Amazon Route53
• Testing the recovered data

• 10% - Troubleshooting
• General troubleshooting information and questions

Pra fechar, vale a pena assistir a esta entrevista onde Paul Duffy (Sr. Manager, Solutions Architect) comenta sobre as atribuições de um arquiteto de soluções na AWS.