Competencies: Cloud > Amazon Web Services

Amazon Web Services

Body of Knowledge

Topic	Description	Relevance	Career Tracks
AWS Fundamentals	Core AWS services including VPC networking, EC2 compute, S3 storage, IAM identity management, and Route53 DNS. Foundation for all AWS-based architectures and a prerequisite for most cloud roles.	Critical	Cloud Engineer, Solutions Architect, DevOps Engineer
EC2 & Compute	Instance types, AMIs, placement groups, spot/reserved instances, auto-scaling groups	Critical	Cloud Engineer, DevOps Engineer, SRE
VPC Networking	Subnets, route tables, internet/NAT gateways, security groups, NACLs, VPC peering	Critical	Cloud Engineer, Network Engineer, Solutions Architect
S3 & Storage	Bucket policies, lifecycle rules, versioning, replication, storage classes, S3 Select	Critical	Cloud Engineer, Data Engineer, Solutions Architect
IAM & Security	Policies, roles, instance profiles, cross-account access, STS, permission boundaries	Critical	Cloud Security Engineer, Solutions Architect, DevOps Engineer
RDS & Databases	Multi-AZ, read replicas, Aurora, parameter groups, backup/restore, encryption	High	Cloud Engineer, DBA, Backend Developer
Lambda & Serverless	Function deployment, event sources, layers, cold starts, concurrency, Step Functions	High	Cloud Engineer, Backend Developer, DevOps Engineer
EKS & Containers	Managed Kubernetes, Fargate, node groups, IRSA, cluster autoscaler, ALB controller	High	DevOps Engineer, Platform Engineer, SRE
CloudFormation & IaC	Stacks, nested stacks, change sets, drift detection, custom resources, CDK	High	DevOps Engineer, Cloud Engineer, Platform Engineer
Monitoring & Logging	CloudWatch metrics/logs/alarms, X-Ray tracing, CloudTrail audit, EventBridge	High	SRE, DevOps Engineer, Cloud Engineer
Networking Services	Route 53, CloudFront CDN, API Gateway, ELB/ALB/NLB, Global Accelerator	High	Cloud Engineer, Solutions Architect, Network Engineer

Topic

Description

Relevance

Career Tracks

AWS Fundamentals

Core AWS services including VPC networking, EC2 compute, S3 storage, IAM identity management, and Route53 DNS. Foundation for all AWS-based architectures and a prerequisite for most cloud roles.

Critical

Cloud Engineer, Solutions Architect, DevOps Engineer

EC2 & Compute

Instance types, AMIs, placement groups, spot/reserved instances, auto-scaling groups

Critical

Cloud Engineer, DevOps Engineer, SRE

VPC Networking

Subnets, route tables, internet/NAT gateways, security groups, NACLs, VPC peering

Critical

Cloud Engineer, Network Engineer, Solutions Architect

S3 & Storage

Bucket policies, lifecycle rules, versioning, replication, storage classes, S3 Select

Critical

Cloud Engineer, Data Engineer, Solutions Architect

IAM & Security

Policies, roles, instance profiles, cross-account access, STS, permission boundaries

Critical

Cloud Security Engineer, Solutions Architect, DevOps Engineer

RDS & Databases

Multi-AZ, read replicas, Aurora, parameter groups, backup/restore, encryption

High

Cloud Engineer, DBA, Backend Developer

Lambda & Serverless

Function deployment, event sources, layers, cold starts, concurrency, Step Functions

High

Cloud Engineer, Backend Developer, DevOps Engineer

EKS & Containers

Managed Kubernetes, Fargate, node groups, IRSA, cluster autoscaler, ALB controller

High

DevOps Engineer, Platform Engineer, SRE

CloudFormation & IaC

Stacks, nested stacks, change sets, drift detection, custom resources, CDK

High

DevOps Engineer, Cloud Engineer, Platform Engineer

Monitoring & Logging

CloudWatch metrics/logs/alarms, X-Ray tracing, CloudTrail audit, EventBridge

High

SRE, DevOps Engineer, Cloud Engineer

Networking Services

Route 53, CloudFront CDN, API Gateway, ELB/ALB/NLB, Global Accelerator

High

Cloud Engineer, Solutions Architect, Network Engineer

Personal Status

Topic	Level	Evidence	Active Projects	Gaps
AWS Fundamentals	Awareness	Conceptual understanding of VPC, EC2, S3, IAM, Route53 from certification study and industry exposure	CISSP Study Guide	No AWS account, no hands-on experience; critical gap for most cloud roles

Topic

Level

Evidence

Active Projects

Gaps

AWS Fundamentals

Awareness

Conceptual understanding of VPC, EC2, S3, IAM, Route53 from certification study and industry exposure

CISSP Study Guide

No AWS account, no hands-on experience; critical gap for most cloud roles