AWS Certified DevOps – Professional Exam Learning Path
AWS Certified DevOps – Professional exam basically validates the following
- Implement and manage continuous delivery systems and methodologies on AWS
- Understand, implement, and automate security controls, governance processes, and compliance validation
- Define and deploy monitoring, metrics, and logging systems on AWS
- Implement systems that are highly available, scalable, and self-healing on the AWS platform
- Design, manage, and maintain tools to automate operational processes
Refer to the AWS Certified DevOps – Professional Exam Blue Print
AWS Cloud Computing Whitepapers
- Security at Scale: Governance in AWS
- Security at Scale: Logging in AWS
- Securing Data at Rest with Encryption
- Development and Test on Amazon Web Services
- Operational Checklists for AWS
- Architecting for the Cloud: Best Practices
- Building Fault-Tolerant Applications on AWS
- Storage Options in the Cloud
- Backup and Recovery Approaches Using Amazon Web Services
- AWS Security Best Practices
AWS Certified DevOps – Professional Exam Contents
Domain 1: Continuous Delivery and Process Automation
- 1.1 Demonstrate an understanding of application lifecycle management:
- Application deployment management strategies such as rolling deployments and A/B.
- includes Blue Green Deployment using various services
- includes deployment using Auto Scaling + ELB either as
- separate ELB and Auto Scaling group
- same ELB and Auto Scaling group with different launch config
- includes Elastic Beanstalk deployment types which include rolling, rolling batch and blue green using swap urls
- includes CloudFormation deployments using AutoScalingRollingUpdate & AutoScalingReplacementUpdate
- includes OpsWorks Deployment Strategies with features to rollback
- includes AutoScaling lifecycle and using hooks
- includes AutoScaling Termination policies
- includes Route 53 routing policies esp. health checks with failover and weighted routing
- Version control, testing, build tools and bootstrapping.
- includes CloudFormation Best Practices esp. Nested Templates for better control, using parameters for reusability
- includes bootstrapping using userdata
- includes CloudFormation helper scripts, WaitCondition and Creation Policy
- includes CloudFormation Custom Resource
- Using Pre-Baked AMIs
- Using Docker with Elastic Beanstalk
- Application deployment management strategies such as rolling deployments and A/B.
- 1.2 Demonstrate an understanding of infrastructure configuration and automation.
- includes Deployment tools comparison
- includes CloudFormation configuration, helper scripts and bootstrapping
- includes OpsWorks
- includes Elastic Beanstalk configurations using .ebextensions
- 1.3 Implement and manage continuous delivery processes using AWS services.
- includes CodeDeploy, OpsWorks
- 1.4 Develop and manage scripts and tools to automate operational tasks using the AWS SDKs, CLI, and APIs.
- includes using CloudFormation helper scripts
- includes using Elastic Beanstalk container commands
Domain 2: Monitoring, Metrics, and Logging
- 2.1 Monitor availability and performance.
- includes CloudWatch alarms and metrics
- 2.2 Monitor and manage billing and cost optimization processes.
- 2.3 Aggregate and analyze infrastructure, OS and application log files.
- includes using CloudWatch logs
- includes using ELB access logs, CloudTrail logs which can be integrated with CloudWatch logs
- 2.4 Use metrics to drive the scalability and health of infrastructure and applications.
- includes using CloudWatch alarms, SNS and AutoScaling
- 2.5 Analyze data collected from monitoring systems to discern utilization patterns.
- includes CloudWatch and analysis using CloudWatch metrics
- includes using Kinesis for real time log analysis
- 2.6 Manage the lifecycle of application and infrastructure logs
- includes logs storage using CloudWatch, S3, Glacier and lifecycle policies
- 2.7 Leverage the AWS SDKs, CLIs and APIs for metrics and logging.
- includes CloudWatch logs using CloudWatch agent with logs group, events and metrics
Domain 3: Security, Governance, and Validation
- 3.1 Implement and manage Identity and Access Management and security controls.
- includes IAM, IAM Best Practices
- includes IAM Role – Identity Federation
- 3.2 Implement and manage protection for data in-flight and at rest.
- includes Encryption at Rest options
- includes S3 encryption, EBS encryption
- includes data in flight encryption using ELB HTTPs and TCP listeners
- includes management of certs and credentials
- 3.3 Implement, automate and validate cost controls for AWS resources.
- includes Cost Explorer, CloudWatch Billing alarms
- 3.4 Implement and manage automated network security and auditing.
- includes CloudTrail
- includes VPC security using Security Groups & NACLs
- 3.5 Apply the appropriate AWS account and billing set-up options based on business requirements.
- includes AWS Organizations, Consolidated Billing
- 3.6 Implement and manage AWS resource auditing and validation.
- includes CloudTrail, AWS Config
- 3.7 Use AWS services to implement IT governance policies.
- includes Risk and Compliance
Domain 4: High Availability and Elasticity
- 4.1 Determine appropriate use of multi-Availability Zone versus multi-region architectures.
- includes services boundaries
- 4.2 Implement self-healing application architectures.
- includes ELB, Auto Scaling,
- includes ELB with Auto Scaling with health checks, connection draining
- includes RDS Multi-AZ
- 4.3 Implement the most appropriate front-end scaling architecture.
- includes building scalable architecture using ELB with Auto Scaling
- includes using CloudFront covering cache behavior, dynamic content, work with on premise servers as origin, HLS with Elastic Transcoder
- 4.4 Implement the most appropriate middle-tier scaling architecture.
- includes building scalable architecture using ELB with Auto Scaling
- includes building loosely coupled scalable architecture using SQS, CloudWatch and AutoScaling and SWF
- 4.5 Implement the most appropriate data storage scaling architecture.
- includes various storage options DynamoDB, RDS, RDS with Read Replicas, ElastiCache, S3 and Glacier, EBS
- includes Storage Options patterns and anti-patterns
- 4.6 Demonstrate an understanding of when to appropriately apply vertical and horizontal scaling concepts.
- includes basic understanding of horizontal scaling is scale in/out and vertical scaling is scale up/down
AWS Certified DevOps – Professional Exam Resources
- Online Courses
- Practice Exams
- Braincert AWS DevOps Engineer – Professional Practice Exam – Set of extensive questions, with very nice, accurate & detailed explanation