☁️Amazon Web Services

How AWS organises its worldwide infrastructure into regions, availability zones, edge locations, and extension zones.

Users, groups, roles, and policies — how AWS controls who can do what to which resources.

The dividing line between what AWS secures and what you secure — and how that line shifts by service type.

The six pillars AWS uses to evaluate cloud architectures: operational excellence, security, reliability, performance efficiency, cost optimization, and sustainability.

Virtual servers on demand — instance types, AMIs, purchasing options, and how EC2 fits into a broader architecture.

How AWS scales compute horizontally and distributes traffic — Launch Templates, Auto Scaling Groups, ALB/NLB/GWLB, and the patterns that make stateless architectures resilient.

Event-driven compute without servers — how Lambda executes code, manages concurrency, integrates with the AWS ecosystem, and how serverless patterns compare to container-based approaches.

How AWS runs containerised workloads — from managed Kubernetes to serverless Fargate and the ECS task model.

How S3 stores unlimited objects across storage classes, handles versioning and replication, and secures data at rest.

EBS, EFS, FSx, Storage Gateway, and Snow Family — how AWS handles block, file, and hybrid on-premises storage scenarios.

Managed relational databases on AWS — how RDS abstracts operational overhead, what Aurora's distributed storage engine provides, and when to use each.

AWS's serverless NoSQL key-value and document database — data model, partitioning, consistency options, indexing, and the operational patterns that make DynamoDB scale to any throughput.

Purpose-built databases beyond RDS and DynamoDB — ElastiCache for caching, Redshift for analytics, Neptune for graphs, DocumentDB for documents, and the rest of the AWS database portfolio.

Decoupled, asynchronous communication between services — SQS queues, SNS fan-out, Kinesis streaming, EventBridge routing, and how these primitives compose into event-driven architectures.

How AWS isolates your network with VPCs, subnets, security groups, NACLs, and endpoints for private connectivity.

Connecting on-premises infrastructure to AWS — Site-to-Site VPN, Direct Connect, Transit Gateway for multi-VPC and multi-account routing, and PrivateLink for service exposure.

Content delivery and DNS on AWS — CloudFront's global edge network, cache behavior configuration, Route 53 routing policies, and how they combine to deliver low-latency, resilient applications worldwide.

Threat detection, data protection, and infrastructure security on AWS — Shield, WAF, GuardDuty, Inspector, Macie, KMS, CloudHSM, Secrets Manager, and Security Hub.

Managing AWS at scale — Organizations, Control Tower, Service Control Policies, CloudTrail audit logging, AWS Config compliance, and CloudWatch observability.

Understanding and controlling AWS spending — how AWS pricing works, purchasing model trade-offs, visibility tools, and the architectural patterns that reduce waste.