AWS Trusted Advisor: Optimize Infrastructure

AWS Trusted Advisor helps you optimize your AWS environment by reducing cost, increasing performance, and improving security.  It provides real-time guidance to help you provision resources according to AWS Best Practices guidelines. (AWS) Infrastructure Optimization This service provides best practice recommendations in 5 categories: Cost Optimization: save money by eliminating unused/idle resources or using reserved … Continue reading AWS Trusted Advisor: Optimize Infrastructure

AWS Inspector: Automated Security Assessment

Amazon Inspector is an automated security assessment service to help improve security and compliance of applications deployed on AWS. Inspector automatically assesses applications for vulnerabilities and deviations from best practices, and produces detailed list of issues.  The list is prioritized according to severity level of the threats, and the service is available via Amazon Inspector … Continue reading AWS Inspector: Automated Security Assessment

AWS Shield: Managed DDos Protection

AWS Shield provides always-on detection and automatic inline mitigations to minimize application downtime and latency to protect against Distributed Denial of Service (DDoS) attacks. It is available globally on all CloudFront and Route 53 Edge Locations.  As a result, you can protect your web applications hosted anywhere in the world by deploying CloudFront in front … Continue reading AWS Shield: Managed DDos Protection

AWS WAF: Web Application Firewall

AWS Web Application Firewall (WAF) protects web applications running on AWS from common web exploits that could compromise security, availability, or consume excessive resources (which in turn could end up costing you a lot of money). As the name suggests, it is a firewall service for your web applications running on AWS cloud. You can … Continue reading AWS WAF: Web Application Firewall

AWS IAM: Identity Access Management

With AWS Identity Access Management (IAM), you are empowered to manage secure access to your AWS resources with users, groups, and permissions. It is free to use, and helps you manage user access to your computing, storage, data base, and application services. IAM access and permissions are global; the access you set for a user … Continue reading AWS IAM: Identity Access Management

Security 101 for AWS Cloud Practitioner Exam

Security is 24% of the Certified Cloud Practitioner Exam. Even though it is only the 3rd out of 4 domains in terms of percentage of the exam, it's still worth becoming comfortable with the Shared Responsibility Model and the various ways AWS helps to protect your infrastructure. Securing the Cloud is a very important part … Continue reading Security 101 for AWS Cloud Practitioner Exam

AWS Shared Responsibility Model

In AWS's Shared Responsibility Model is the concept that AWS and the customer share responsibilities for security and compliance of Amazon Web Services.  This allows AWS to support the customer by taking on the burden of operations control associated with the physical infrastructure so the customer can focus on securing and producing within the context … Continue reading AWS Shared Responsibility Model

AWS Tags & Resource Groups

Utilizing Tags and Resource Groups allows an Organization to efficiently bill out resources to departments as well as keep track of who's using what. Tags Tags: Key value pairs attached to AWS resources Metadata: Data about Data They can sometimes be inherited from other services Auto Scaling, CloudFormation, Elastic Beanstalk can create other resources with … Continue reading AWS Tags & Resource Groups

AWS Billing 101 for Cloud Practitioner Exam

For AWS usage, you are billed for the support plans, and the resources you utilize.  Billing and Pricing is 12% of the Certified Cloud Practitioner Exam, so it's imperative that you get a good grasp on the different support plans and the resource billings, as well as ways you can monitor consumption. Support Plans There are … Continue reading AWS Billing 101 for Cloud Practitioner Exam