AWS Solutions Architect
AWS Scenarios
Scenario-driven AWS architecture studies that connect services, requirements, tradeoffs, and common SAA-C03 traps.
foundation
Public Web App On AWS
Design a highly available public web application using VPC subnets, an Application Load Balancer, Auto Scaling, EC2, RDS, S3, IAM, and monitoring.
intermediate
CloudFront WAF Protected Web Edge
Design an internet-facing web edge with CloudFront, AWS WAF, Shield, private origins, origin access control, TLS, logging, caching, rate limits, and exam decision traps.
foundation
Private App Access To S3
Design private AWS application access to Amazon S3 using VPC gateway endpoints, IAM roles, endpoint policies, bucket policies, and route tables.
intermediate
Highly Available RDS App
Design a relational AWS application that survives instance and Availability Zone failures using private subnets, RDS Multi-AZ, backups, and application retry behavior.
foundation
Static Site With CloudFront And S3
Design static website delivery using Amazon S3, CloudFront, origin access control, Route 53, TLS, caching, and safe public access boundaries.
intermediate
Serverless API With Lambda And DynamoDB
Design a serverless API using API Gateway, Lambda, DynamoDB, IAM, CloudWatch, throttling, retries, and cost controls for SAA-C03 architecture decisions.
intermediate
Event-Driven Order Processing
Design an event-driven order workflow using EventBridge, SQS, Lambda, Step Functions, SNS, DLQs, idempotency, retries, and monitoring for SAA-C03 scenarios.
intermediate
Secure Partner File Ingest On S3
Design secure partner file ingestion with AWS Transfer Family, Amazon S3, KMS, IAM roles, S3 event notifications, SQS, Lambda, Macie, lifecycle policies, quarantine prefixes, and audit logging.
intermediate
Analytics Data Lake On S3
Design an AWS analytics data lake using S3, Glue, Athena, Redshift, Kinesis, QuickSight, IAM, partitioning, lifecycle, and cost controls for SAA-C03 scenarios.
intermediate
Backup vs Replication Recovery Design
Compare backups, snapshots, replication, read replicas, cross-Region copies, immutability, point-in-time recovery, and recovery objectives for AWS architecture decisions.
intermediate
Multi-Region Disaster Recovery On AWS
Design a multi-Region disaster recovery strategy using RTO, RPO, backup and restore, pilot light, warm standby, active-active, Route 53, ARC routing controls, data replication, and failover testing.
intermediate
On-Premises Migration To AWS
Design a phased on-premises migration to AWS using Application Migration Service, DMS, DataSync, Snow Family concepts, VPN or Direct Connect, validation, cutover, and SAA-C03 traps.
intermediate
Hybrid Network Connectivity To AWS
Design hybrid connectivity using Transit Gateway, Direct Connect, Site-to-Site VPN, route tables, DNS forwarding, network segmentation, monitoring, and SAA-C03 decision traps.
intermediate
Multi-Account Cost Governance
Design AWS cost governance across accounts using Organizations, cost allocation tags, Cost Explorer, Budgets, CUR/Data Exports, SCPs, Service Catalog, Savings Plans, and Compute Optimizer.
intermediate
Landing Zone Guardrails For Multi-Account AWS
Design a governed AWS landing zone using AWS Organizations, Control Tower, OUs, SCPs, Account Factory, IAM Identity Center, centralized logs, preventive controls, detective controls, and account enrollment.
intermediate
Secure Cross-Account CloudTrail Logging
Design centralized AWS CloudTrail logging across accounts using AWS Organizations, an organization trail, a log archive account, S3 bucket policies, encryption, and immutability controls.
intermediate
Centralized Security Findings And Incident Triage
Design centralized security visibility using AWS Organizations, delegated administrators, GuardDuty, Security Hub, Inspector, Macie, EventBridge, CloudTrail, CloudWatch, and response workflows.