Security Alerting with AWS Security Hub With so many security tools available in both AWS and from third-party providers, those that are responsible for managing the alerts need a single pane of glass to centralize all the alerts and notifications coming in. AWS Security Hub helps you consolidate many of your security findings, alerts, and […]

Visualizing comparisons in your data Comparisons are very common in data analysis and there are different ways to present them. Starting with the bar chart, you must have seen many reports that have used this type of visualization. Bar charts can be used to compare one variable among different classes – for example, a car’s […]

This chapter covers the following official AWS Certified SysOps Administrator – Associate (SOA-C02) exam domain: Domain 3: Deployment, Provisioning, and Automation (For more information on the official AWS Certified SysOps Administrator – Associate [SOA-C02] exam topics, see the Introduction.) As you can probably imagine, provisioning resources in AWS is a major responsibility within an organization. […]

Application Load Balancing The application load balancer, or layer 7 load balancer, is a version 2 ELB that supports HTTP, HTTPS, and WebSocket protocols. It is important to remember that the ALB does not listen for other protocols such as VOIP, gaming, SSH, FTP, or any others. If you want to work with these protocols, […]

Principle 2 – Test Recovery Procedures Having automated recovery procedures is good, but making sure they work is better. If you’re new to the cloud, you may be used (in your on-premises environment) to testing your workloads and making sure they work in “normal” conditions, but you may be less used to testing recovery procedures […]

Reviewing the Findings in GuardDuty If you went through the exercise in the previous section, you will see the findings appear inside the GuardDuty console after about 8 to 10 minutes. At the top of the screen, the colored ovals that previously contained all zeros will now have one in the medium-severity category and two […]

Data visualization is an art! No matter how much effort you and your team put into data preparation and preliminary analysis for modeling, if you don’t know how to show your findings effectively, your audience may not understand the point you are trying to make. Often, such situations may be even worse when you are […]

Network Load Balancing In the Open Systems Interconnection (OSI) model, layer 4 is the transport layer and primarily uses the UDP, TCP, or the SSL/TLS networking protocols. The layer 4 load balancers are in the network load balancer category and are known for their high connection rates, low latency, and overall high-performance characteristics. While you […]

Summary This chapter has covered quite a lot of ground in terms of designing secure solutions on AWS. You learned how to leverage IAM and identity federation in your solution to provide granular access control. You then looked at the best practices to protect your infrastructure resources—using tools such as AWS WAF, AWS Shield, and […]

Exam Readiness Drill – Chapter Review Questions Apart from a solid understanding of key concepts, being able to think quickly under time pressure is a skill that will help you ace your certification exam. That is why working on these skills early on in your learning journey is key. Chapter review questions are designed to […]