Final

Amazon SNS

Send notifications directly to individual devices subscribed to the event topic

Amazon EventBridge

Loosely coupled, event driven architecture; EventBus helps you receive, filter, transform, route, and delivery events

Amazon Connect

AI powered contact center serivce

Amazon SES

Send and receive high volume emails

Amazon Chime

Communication service that lets you meet, chat, and call within your organization

Amazon Elasticache

Managed, in-memory data store and cache system

AWS Support

Basic, Developer, Business, Enterprise on-ramp, Enterprise

AWS Activate for Start Ups

Provides resources for start ups

AWS IQ

Connect with AWS certified experts

AMS

AWS Managed Services; operational management, security, compliance, and cost optimization to run AWS environments effectively

AWS CLI

Command Line Interface; used to interact with AWS resources

AWS CloudShell

Explore and manage AWS resources from a terminal in browser

AWS Cloud9

Cloud based IDE in browser

AWS CodeCommit

Host private Git repositories

AWS AppConfig

Roll out application changes and feature toggles

AWS CodeArtifact

Centralized storage and sharing of build artifact

AWS CodeBuild

Automate building process

AWS CodeDeploy

Automate releasing software changes to production environments

AWS Code Pipeline

Automate test and deployment phase of software release development

AWS CodeStar

Application development, building, and deployment; CodeCatalyst: streamline collaboration and automation workloads

Amazon AppStream 2.0

SaaS application streaming or delivery of virtual desktops with selective persistence

Amazon WorkSpaces

DaaS for remote work

Amazon WorkSpaces Web

Secure browsing access to internal websites and SaaS applications

Amazon Amplify

Build fullstack, serverless web and mobile apps

AWS AppSync

Connect apps to data and events with secure, serverless, and performant APIs

AWS DeviceFarm

Application testing for web and mobile apps

IoT

Network of physical devices, appliance, and other items connected to the internet and collect and exchange data

AWS IoT Core

Connect with billions of IoT devices and route trillions of messages to AWS services

AWS IoT Greengrass

Open-source edge runtime and cloud service for building, deploying, and managing device software

Amazon Lex

Chatbots with conversational AI

Amazon Rekognition

Computer vision

Amazon SageMaker

Build ML models

Amazon EMR

Elastic MapReduce; analyze big data

Amazon Comprehend

NLP service that uses ML to uncover insights from text

Amazon Kendra

Intelligent querying of text

Amazon Polly

Text to speech

Amazon Textract

Extract text from scans/forms/etc

Amazon Transcribe

Speech to text

Amazon Translate

Translate text to different languages

Amazon SQS

Simple Queue Service; Message queuing service that decouples and scales microservices, distributed systems, and serverless applications

AWS Step Functions

Orchestrate multiple AWS services into serverless workflows so that you can build and update applications quickly

IAM

Identity and Access Management; Allows/denies access to service, individual resource, or API actions (applies to users, groups, roles, not root user)

SCP

Service Control Policy; Allow/deny access to services for accounts or groups in an organizational unit (OU) (affects all, even root user)

TCO

Total Cost of Ownership; Financial est. to identify direct and indirect costs of a system (entire infrastructure or specific workload)

Amazon Trusted Advisor

Global, free service, automated online tool providing real-time guidance or resource provisioning following AWS best practices by looking at entire AWS environment.

AWS Migration Hub

Cloud migration and modernization; Single location to collect server and app inventory data for the assessment, planning, and tracking of migrations to AWS

AWS Application Migration Service

Lift-and-shift migration; Simplify and expedite migrations while reducing cost

AWS DMS

AWS Database Migration Service; Migrate databases, data warehouses, NoSQL databases, etc. quickly and securely

AWS Application Discovery Service

Collects server specification info, performance data, and details of running processes and network connections

AWS Datasync

Automate data movement between storage systems without writing or running scripts for repeated transfers

AWS Regions

Physical geographical area typically consisting of 2+ Availability Zones (AZs)

AZ

Availability Zone; Fully isolated partition of the AWS infrastructure consisting of discrete data centers

POPs

Points of Presence; Edge locations designed to deliver content and services closer to users

Regional edge caches

Caches content with infrequent access

Local Zones

Provide infrastructure resources like compute and storage services closer to users for lower latency access

Wavelength Zones

Optimize mobile deployment over 5G network; Ultra low latency for 5G devices

CSE

Client side encryption

SSE

Server side encryption

IAM User

Person or application that can authenticate with an AWS account

IAM Group

Collection of IAM users that have identical authorization

IAM Policy

Document that defines which resources can be accessed at what level

IAM Roles

Mechanism to grant set of permissions for making AWS service requests

AWS IAM Identity Center

Formerly AWS Single Sign-on (SSO), free tool to manage human user access to AWS resources

Inline policy

Directly attached to an IAM user, group, or role

Managed policy

Store independently from identity and can be attached to multiple identities

CIA Triad

Confidentiality, Integrity, Availability

AWS Organizations

Consolidate multiple AWS accounts for central management

Amazon Congito

Add user sign-up, sign-in, and access control to web and mobile apps

AWS KMS

Key Management Service; Enables creation and management of encryption keys

AWS Secrets Manager

Helps manage, retrieve, and rotate DB credentials, API keys, and other secrets (credentials) throughout their life cycles

OSI Model

Open Systems Interconnection; 7 layers: 1. Physical, 2. Data Link, 3. Network, 4. Transport, 5. Session, 6. Presentation, 7. Application

AWS Shield

Managed distributed denial of service (DDoS) protection service

AWS WAF

Web Application Firewall; Protect against vulnerabilities and exploits such as SQL injection (SQLi) or cross site scripting (XSS) attacks

AWS Firewall Manager

Simplifies admin and maintenance tasks across multiple accounts and resources for a variety of protections (WAF, Shield, etc.)

Amazon Macie

Uses machine learning (ML) and pattern matching to discover and help protect sensitive data in Amazon S3

AWS Backup

Backup as a Service (BaaS); Centralize and automate data protection across AWS services and on premises by using the backup console, APIs, or CLI

AWS Config

Provides a detailed inventory, configuration history, and relationship tracking of AWS resources for security, audit, and compliance

AWS Artifact

Provides access & downloads of AWS security and compliance documentation

AWS Audit Manager

Continually audits AWS usage to simplify risk and compliance assessment

AWS Compliance

Inherit most comprehensive compliance controls with AWS

Amazon Inspector

Automated vulnerability management service that continuously monitors AWS workloads for software vulnerabilities and unintended network exposure

Amazon Guard Duty

Threat detection service that continuously monitors for suspicious activity and unauthorized behaviors using ML, anomaly detection, and integrated threat intelligence

AWS Security Hub

Cloud security posture management (CSPM) service that performs security best practice checks, aggregates alerts, and enables automatic remediation

Amazon VPC

Virtual Private Cloud; Provision a logically isolated section of the AWS cloud

Route table

Contains a set of rules (routes) that are configured to direct network traffic from subnet

Internet gateway

Gateway to public subnets; Provides a target in the VPC route tables for internet-routable traffic and performs network address translation for instances assigned  public IPv4 addresses

NAT Gateway

Network Address Translation Gateway; Gateway to private subnet; Translates private IP addresses of instances in the private subnet to the public IP address of the NAT gateway when sending traffic to the internet while remaining hidden from inbound internet traffic

Load balancers

Divides internet traffic among instances

VPC Peering

Connect VPCs in own account, between accounts, or between Regions

AWS Transit gateway

Hub that defines VPC connections

AWS Site-to-Site VPN

Fully managed service that creates secure connections between datacenter and AWS resources

AWS Direct Connect

Connect to AWS without public internet

AWS Outposts

Connects on-premise network to Amazon VPC

Amazon Route 53

DNS web service that routes users to internet applications by translating names into IP addresses that computers use to connect to each other

CDN

Content Delivery Network; Globally distributed system of caching servers containing copies of commonly requested files (static content)

Amazon CloudFront

CDN service; Global network of edge locations and Regional edge caches

AWS Global Accelerator

Works at the network (layer 3) and transport (layer 4) layers to direct user traffic to the nearest AWS edge location based on optimal-routing algorithm

Amazon EC2

Instance based IaaS; Provision VMs

AMI

Amazon Machine Image; Template to create an EC2 instance

Elastic IP Address

Persistent public IP address - provides a static IPv4 address for dynamic cloud computing