Amazon provide a cloud computing service where you can move your physical computer capabilities to a remote system that is accessible over the Internet.
AWS Certified Cloud Practitioner
Level: Foundational
Duration: 90min (1hr 30mins)
Number of questions: 65 questions – multiple choice (50 marked, 15 unmarked – the 15 unmarked will be spread across the 4 domains. I
Pass mark: 700/1000 , 70% ish (the scoring is scaled which means some questions score higher than others e.g. a true or false is less than a multi-select but they both count as 1 question)
70% of 60 questions is 42 questions so, in theory, you could get 42 out of 54 and pass (but you would have to get all the unmarked questions wrong which would be tricky)
Price: $100
Exam code: CLF-C02 (Cloud Foundation)
Domains: 4
| Cloud Concepts | Security and Compliance | Technologies and Services | Billing, Pricing and Support | |
|---|---|---|---|---|
| 1 |
1.1 Task statement: Define the benefits of the AWS Cloud Knowledge of: K1.1.1 – Value proposition of the AWS Cloud Skills in: S1.1.1 – Understanding the economies of scale (for example, cost savings) S1.1.2 – Understanding the benefits of global infrastructure (for example, speed of deployment, global reach) S.1.1.3 – Understanding the advantages of high availability, elasticity, and agility | 2.1 Task statement: Understand the AWS shared responsibility model Knowledge of: K2.1.1 – AWS shared responsibility model (SRM) Skills in: S2.1.1. – Recognizing the components of the AWS shared responsibility model S2.1.2 – Describing the customer’s responsibilities on AWS S2.1.3 – Describing AWS responsibilities S2.1.4 – Describing responsibilities that the customer and AWS share S2.1.5 – Describing how AWS responsibilities and customer responsibilities can shift, depending on the service used (for example, Amazon RDS, AWS Lambda, Amazon EC2) | 3.1: Task statement: Define methods of deploying and operating in the AWS Cloud Knowledge of: K3.1.1 – Different ways of provisioning and operating in the AWS Cloud K3.1.2 – Different ways to access AWS services K3.1.3 – Types of cloud deployment models K3.1.4 – Connectivity options Skills in: S3.1.1 – Deciding between options such as programmatic access (for example, APIs, SDKs, CLI), the AWS Management Console, and infrastructure as code (IaC) S3.1.2 – Evaluating requirements to determine whether to use one-time operations or repeatable processes S3.1.1 – Identifying different deployment models (for example, cloud, hybrid, on-premises) S3.1.4 – Identifying connectivity options (for example, AWS VPN, AWS Direct Connect, public internet) | 4.1: Task Statement: Compare AWS pricing models Knowledge of: K4.1.1 – Compute purchasing options (for example, On-Demand Instances, Reserved Instances, Spot Instances, Savings Plans, Dedicated Hosts, Dedicated Instances, Capacity Reservations) K4.1.2 – Data transfer charges K4.1.3 – Storage options and tiers Skills in: K4.1.1 – Identifying and comparing when to use various compute purchasing options K4.1.2 – Describing Reserved Instance flexibility K4.1.3 – Describing Reserved Instance behavior in AWS Organizations K4.1.4 – Understanding incoming data transfer costs and outgoing data transfer costs (for example, from one Region to another Region, within the same Region) K4.1.5 – Understanding different pricing options for various storage options and tiers |
| 3 | 1.2 Task statement: Identify design principles of the AWS Cloud Knowledge of: K1.2.1 – AWS Well-Architected Framework (WAF) Skills in: S1.2.1 – Understanding the pillars of the Well-Architected Framework (for example, operational excellence, security, reliability, performance efficiency, cost optimization, sustainability) S1.2.2 – Identifying differences between the pillars of the Well-Architected Framework | 2.2: Task statement: Understand AWS Cloud security, governance, and compliance concepts Knowledge of: K2.2.1 – AWS compliance and governance concepts K2.2.2 – Benefits of cloud security (for example, encryption) K2.2.3 – Where to capture and locate logs that are associated with cloud security Skills in: S2.2.1 – dentifying where to find AWS compliance information (for example, AWS Artifact) S2.2.2 – Understanding compliance needs among geographic locations or industries (for example, AWS Compliance) S2.2.3 – Describing how customers secure resources on AWS (for example, Amazon Inspector, AWS Security Hub, Amazon GuardDuty, AWS Shield) S2.2.4 – Identifying different encryption options (for example, encryption in transit, encryption at rest) S2.2.5 – Recognizing services that aid in governance and compliance (for example, monitoring with Amazon CloudWatch; auditing with AWS CloudTrail, AWS Audit Manager, and AWS Config; reporting with access reports) S2.2.6 – Recognizing compliance requirements that vary among AWS services | 3.3: Task statement: Define the AWS global infrastructure Knowledge of: K3.3.1 – AWS Regions, Availability Zones, and edge locations K3.3.2 – High availability K3.3.3 – Use of multiple Regions K3.3.4 – Benefits of edge locations K3.3.5 – AWS Wavelength Zones and AWS Local Zones Skills in: S3.3.1 – Describing relationships among Regions, Availability Zones, and edge locations S3.3.2 – Describing how to achieve high availability by using multiple Availability Zones S3.3.3 – Recognizing that Availability Zones do not share single points of failure S3.3.4 – Describing when to use multiple Regions (for example, disaster recovery, business continuity, low latency for end users, data sovereignty) S3.3.5 – Describing at a high level the benefits of edge locations (for example, Amazon CloudFront, AWS Global Accelerator) | 4.2: Task statement: Understand resources for billing, budget, and cost management Knowledge of: K4.2.1 – Billing support and information K4.2.2 – Pricing information for AWS services K4.2.3 – AWS Organizations K4.2.4 – AWS cost allocation tags Skills in: S4.2.1 – Understanding the appropriate uses and capabilities of AWS Budgets, AWS S4.2.2 – Cost Explorer, and AWS Billing Conductor S4.2.3 – Understanding the appropriate uses and capabilities of AWS Pricing Calculator S4.2.4 – Understanding AWS Organizations consolidated billing and allocation of costs S4.2.5 – Understanding various types of cost allocation tags and their relation to billing reports (for example, AWS Cost and Usage Report) |
| 4 | 1.3 Task statement: Understand the benefits of and strategies for migration to the AWS Cloud Knowledge of: K1.3.1 – Cloud adoption strategies K1.3.2 – Resources to support the cloud migration journey Skills in: S1.3.1 – Understanding the benefits of the AWS Cloud Adoption Framework (AWS CAF) (for example, reduced business risk; improved environmental, social, and governance (ESG) performance; increased revenue; increased operational efficiency) S1.3.2 – Identifying appropriate migration strategies (for example, database replication, use of AWS Snowball) | 2.3: Task statement: Identify AWS access management capabilities Knowledge of: K2.3.1 – Identity and access management (for example, AWS Identity and Access Management [IAM]) K2.3.2 – Importance of protecting the AWS root user account K2.3.3- Principle of least privilege K2.3.4 – AWS IAM Identity Center (AWS Single Sign-On) Skills in: S2.3.1 – Understanding access keys, password policies, and credential storage (for example, AWS Secrets Manager, AWS Systems Manager) S2.3.2 – Identifying authentication methods in AWS (for example, multi-factor authentication [MFA], IAM Identity Center, cross-account IAM roles) S2.3.3 – Defining groups, users, custom policies, and managed policies in compliance with the principle of least privilege S2.3.4 – Identifying tasks that only the account root user can perform S2.3.5 – Understanding which methods can achieve root user protection S2.3.6- Understanding the types of identity management (for example, federated) | 3.3: Task statement: Identify AWS compute services Knowledge of: K3.3.1 – AWS compute services Skills in: K3.3.1 – Recognizing the appropriate use of different EC2 instance types (for example, compute optimized, storage optimized) K3.3.2 – Recognizing the appropriate use of different container options (for example, Amazon ECS, Amazon EKS) K3.3.3 – Recognizing the appropriate use of different serverless compute options (for example, AWS Fargate, Lambda) K3.3.4 – Recognizing that auto scaling provides elasticity Identifying the purposes of load balancers | 4.3: Task statement: Identify AWS technical resources and AWS Support options Knowledge of: K4.3.1 – Resources and documentation available on official AWS websites AWS Support plans K4.3.2 – Role of the AWS Partner Network, including independent software vendors and system integrators K4.3.3 – AWS Support Center 4.3 Skills in: S4.3.1 – Locating AWS whitepapers, blogs, and documentation on official AWS websites S4.3.1 – Identifying and locating AWS technical resources (for example AWS Prescriptive Guidance, AWS Knowledge Center, AWS re:Post) S4.3.2 – Identifying AWS Support options for AWS customers (for example, customer service and communities, AWS Developer Support, AWS Business Support, AWS Enterprise On-Ramp Support, AWS Enterprise Support) S4.3.3 – Identifying the role of Trusted Advisor, AWS Health Dashboard, and the AWS Health API to help manage and monitor environments for cost optimization Identifying the role of the AWS Trust and Safety team to report abuse of AWS resources S4.3.4 – Understanding the role of AWS Partners (for example AWS Marketplace, independent software vendors, system integrators) S4.3.5 – Identifying the benefits of being an AWS Partner (for example, partner training and certification, partner events, partner volume discounts) S4.3.6 – Identifying the key services that AWS Marketplace offers (for example, cost management, governance and entitlement) S4.3.7 – Identifying technical assistance options available at AWS (for example, AWS Professional Services, AWS Solutions Architects) |
| 5 | 1.4 Task statement 1.4: Understand concepts of cloud economics Knowledge of: K1.4.1 – Aspects of cloud economics K1.4.2 – Cost savings of moving to the cloud Skills in: S1.4.1 – Understanding the role of fixed costs compared with variable costs S1.4.2 – Understanding costs that are associated with on-premises environments S1.4.3 – Understanding the differences between licensing strategies (for example, Bring Your Own License [BYOL] model compared with included licenses) S1.4.4 – Understanding the concept of rightsizing S1.4.5 – Identifying benefits of automation (for example, provisioning and configuration management with AWS CloudFormation) S1.4.6 – Identifying managed AWS services (for example, Amazon RDS, Amazon Elastic Container Service [Amazon ECS], Amazon Elastic Kubernetes Service [Amazon EKS], Amazon DynamoDB) | 2.4: Task statement: Identify components and resources for security Knowledge of: K2.4.1 – Security capabilities that AWS provides K2.4.2 – Security-related documentation that AWS provides Skills in: S2.4.1 – Describing AWS security features and services (for example, security groups, network ACLs, AWS WAF) S2.4.2 – Understanding that third-party security products are available from AWS Marketplace S2.4.3 – Identifying where AWS security information is available (for example, AWS Knowledge Center, AWS Security Center, AWS Security Blog) S2.4.4 – Understanding the use of AWS services for identifying security issues (for example, AWS Trusted Advisor) | 3.4: Task statement: identify AWS database service Knowledge of: K3.4.1 – AWS database services K3.4.2 – Database migration Skills in: S3.4.1 – Deciding when to use EC2 hosted databases or AWS managed databases S3.4.2 – Identifying relational databases (for example, Amazon RDS, Amazon Aurora) S3.4.3 – Identifying NoSQL databases (for example, DynamoDB) S3.4.4 – Identifying memory-based databases S3.4.5 – Identifying database migration tools (for example AWS Database Migration Service [AWS DMS], AWS Schema Conversion Tool [AWS SCT]) | |
| 6 | 3.5: Task statement: Identify AWS network service Knowledge of: K3.5.1 – AWS network services Skills in: S3.5.1 – Identifying the components of a VPC (for example, subnets, gateways) S3.5.1 – Understanding security in a VPC (for example, network ACLs, security groups) S3.5.1 – Understanding the purpose of Amazon Route 53 IS3.5.1 – dentifying edge services (for example, CloudFront, Global Accelerator) Identifying network connectivity options to AWS (for example AWS VPN, Direct Connect) | |||
| 7 | 3.6: Task statement: Identify AWS storage services Knowledge of: K3.6.1 – AWS storage services Skills in: S3.6.1 – Identifying the uses for object storage S3.6.2 – Recognizing the differences in Amazon S3 storage classes S3.6.3 – Identifying block storage solutions (for example, Amazon Elastic Block Store [Amazon EBS], instance store) S3.6.4 – Identifying file services (for example, Amazon Elastic File System [Amazon EFS], Amazon FSx) S3.6.5 – Identifying cached file systems (for example, AWS Storage Gateway) S3.6.6 – Understanding use cases for lifecycle policies S3.6.7 – Understanding use cases for AWS Backup | |||
| 8 | 3.7: Task statement: Identify AWS artificial intelligence and machine learning (AI/ML) services and analytics services Knowledge of: S3.7.1 – AWS AI/ML services S3.7.2 – AWS analytics services Skills in: S3.7.1 – Understanding the different AI/ML services and the tasks that they accomplish (for example, Amazon SageMaker, Amazon Lex, Amazon Kendra) S3.7.2 – Identifying the services for data analytics (for example, Amazon Athena, Amazon Kinesis, AWS Glue, Amazon QuickSight) | |||
| 8 | 3.8 Task statement: Identify services from other in-scope AWS service categories. Knowledge of: K3.8.1 – Application integration services of Amazon EventBridge, Amazon Simple Notification Service (Amazon SNS), and Amazon Simple Queue Service (Amazon SQS) K3.8.2 – Business application services of Amazon Connect and Amazon Simple Email Service (Amazon SES) K3.8.3 – Customer engagement services of AWS Activate for Startups, AWS IQ, AWS Managed Services (AMS), and AWS Support K3.8.4 – Developer tool services and capabilities of AWS AppConfig, AWS Cloud9, AWS CloudShell, AWS CodeArtifact, AWS CodeBuild, AWS CodeCommit, AWS CodeDeploy, AWS CodePipeline, AWS CodeStar, and AWS X-Ray K3.8.5 – End-user computing services of Amazon AppStream 2.0, Amazon WorkSpaces, and Amazon WorkSpaces Web K3.8.6 – Frontend web and mobile services of AWS Amplify and AWS AppSync K3.8.7 – IoT services of AWS IoT Core and AWS IoT Greengrass Skills in: S3.8.1 – Choosing the appropriate service to deliver messages and to send alerts and notifications S3.8.2 – Choosing the appropriate service to meet business application needs S3.8.3 – Choosing the appropriate service for AWS customer support S3.8.4 – Choosing the appropriate option for business support assistance S3.8.5 – Identifying the tools to develop, deploy, and troubleshoot applications S3.8.6 – Identifying the services that can present the output of virtual machines (VMs) on end-user machines S3.8.7 – Identifying the services that can create and deploy frontend and mobile services S3.8.8 – Identifying the services that manage IoT devices |
Compsortia 