AWS Flashcards
Which web service allows you to configure and manage cache application
environments? - ANSWERAmazon ElastiCache
What type of control involves passing control from AWS specifically back to the
customer? - ANSWERInherited controls
What AWS resource gives you the ability to manage and deploy applications within the
AWS infrastructure? - ANSWERAWS Elastic Beanstalk
Who is responsible for the patching of guest OSes and applications - ANSWERThe
Customer
What is defined as the process of managing all ongoing upgrades, repairs and
reconfigurations of cloud services? - ANSWERChange management
What AWS resource gives you the ability to see your AWS resources from out of the
box by providing visibility metrics by performance and availability - ANSWERAWS
health
Which AWS resource is used for managing puppet and chef services? - ANSWERAWS
OpsWorks
What AWS service allows you to research costs with different AWS Services while
reviewing different cost points? - ANSWERAWS Pricing Calculator
What are software packages/services are offered as a single package, which automate
cloud security? - ANSWEROrchestration systems
What is the operating system called when you create an EC2 instance using a customer
AMI or Amazon Machine image? - ANSWERA guest operating system
What is the security advantage of AWS storage snowball? - ANSWERIt bypasses a
connection to the internet and avoids the cost and security concerns of network data
transfer
What is a cost saving option after you have created several EC2 instances within your
AWS infrastructure? - ANSWERReplacing on-demand instances with reserved
instances
What is the mindset of being concerned with the costs, principles, and overall benefits
of cloud computing? - ANSWERCloud Economics
, What document defines the security for a company's cloud controls, policies,
responsibilities, and underlying technologies? - ANSWERSecurity policy document
Which pillar of the Well-Architected framework is focused on the stability of AWS
systems and their ability to support business value with long uptimes and durable
systems? - ANSWERReliability pillar
What are two security options used within Amazon S3 that can be used for preventing
accidental delete action? - ANSWERVersioning and Multi-factor authentication (MFA)
delete
Which feature of Amazon EC2 is designed to closely mimic an actual data center, but
with a scalable infrastructure? - ANSWERAn amazon virtual private cloud (VPC)
What private connection on your side of the network links your company resources to
Amazon AWS resources using direct connect? - ANSWERAn Interface type endpoint
What is a feature that automatically replicates data within an AWS region to another
AWS region dynamically and creates a global distribution of sustained data? -
ANSWERCross-regional replication
What security best practice should you follow when setting permissions in IAM policies?
- ANSWERGranting least privilege
What is the name of a set of virtual servers that are used within AWS to add additional
resources in processing large amounts of data at a reduced cost from within the EC2
infrastructure? - ANSWERa fleet
A zone which has a worldwide name is called what? - ANSWERSoft zoning
Which feature automatically replicates data from one AWS region to another and
creates a global distribution of sustained data? - ANSWERCross region replication
Which Amazon service supports chef and puppet services for managing deployments,
but does not use templates? - ANSWERAWS OpsWorks
What is the mindset of being concerned with the costs, principals and overall benefits of
cloud computing? - ANSWERCloud economics
Which cloud component focuses on firewalls, intrusion detection, encryption, etc? -
ANSWERSecurity Component
What AWS resource provides an additional layer of security when implemented on the
VPC side, where it acts like a global firewall? - ANSWERAWS Network ACL
What does FISMA stand for? - ANSWERFederal Information Security Management Act
Which web service allows you to configure and manage cache application
environments? - ANSWERAmazon ElastiCache
What type of control involves passing control from AWS specifically back to the
customer? - ANSWERInherited controls
What AWS resource gives you the ability to manage and deploy applications within the
AWS infrastructure? - ANSWERAWS Elastic Beanstalk
Who is responsible for the patching of guest OSes and applications - ANSWERThe
Customer
What is defined as the process of managing all ongoing upgrades, repairs and
reconfigurations of cloud services? - ANSWERChange management
What AWS resource gives you the ability to see your AWS resources from out of the
box by providing visibility metrics by performance and availability - ANSWERAWS
health
Which AWS resource is used for managing puppet and chef services? - ANSWERAWS
OpsWorks
What AWS service allows you to research costs with different AWS Services while
reviewing different cost points? - ANSWERAWS Pricing Calculator
What are software packages/services are offered as a single package, which automate
cloud security? - ANSWEROrchestration systems
What is the operating system called when you create an EC2 instance using a customer
AMI or Amazon Machine image? - ANSWERA guest operating system
What is the security advantage of AWS storage snowball? - ANSWERIt bypasses a
connection to the internet and avoids the cost and security concerns of network data
transfer
What is a cost saving option after you have created several EC2 instances within your
AWS infrastructure? - ANSWERReplacing on-demand instances with reserved
instances
What is the mindset of being concerned with the costs, principles, and overall benefits
of cloud computing? - ANSWERCloud Economics
, What document defines the security for a company's cloud controls, policies,
responsibilities, and underlying technologies? - ANSWERSecurity policy document
Which pillar of the Well-Architected framework is focused on the stability of AWS
systems and their ability to support business value with long uptimes and durable
systems? - ANSWERReliability pillar
What are two security options used within Amazon S3 that can be used for preventing
accidental delete action? - ANSWERVersioning and Multi-factor authentication (MFA)
delete
Which feature of Amazon EC2 is designed to closely mimic an actual data center, but
with a scalable infrastructure? - ANSWERAn amazon virtual private cloud (VPC)
What private connection on your side of the network links your company resources to
Amazon AWS resources using direct connect? - ANSWERAn Interface type endpoint
What is a feature that automatically replicates data within an AWS region to another
AWS region dynamically and creates a global distribution of sustained data? -
ANSWERCross-regional replication
What security best practice should you follow when setting permissions in IAM policies?
- ANSWERGranting least privilege
What is the name of a set of virtual servers that are used within AWS to add additional
resources in processing large amounts of data at a reduced cost from within the EC2
infrastructure? - ANSWERa fleet
A zone which has a worldwide name is called what? - ANSWERSoft zoning
Which feature automatically replicates data from one AWS region to another and
creates a global distribution of sustained data? - ANSWERCross region replication
Which Amazon service supports chef and puppet services for managing deployments,
but does not use templates? - ANSWERAWS OpsWorks
What is the mindset of being concerned with the costs, principals and overall benefits of
cloud computing? - ANSWERCloud economics
Which cloud component focuses on firewalls, intrusion detection, encryption, etc? -
ANSWERSecurity Component
What AWS resource provides an additional layer of security when implemented on the
VPC side, where it acts like a global firewall? - ANSWERAWS Network ACL
What does FISMA stand for? - ANSWERFederal Information Security Management Act
