Advanced Architecting on AWS

Course Description

Advanced Architecting on AWS is an intensive, scenario-based course designed to challenge your existing knowledge and push you toward mastery of the platform. Unlike foundational courses, each module presents a specific architectural hurdle that you must solve by examining and applying advanced AWS services. Over three days, you will dive deep into high-level topics including managing multiple AWS accounts, complex hybrid connectivity (including 5G optimization), and global networking with AWS Transit Gateway. The curriculum also covers sophisticated data management, cost optimization at scale, and securing data across its entire lifecycle. The course culminates in a final "Design Challenge" where you apply everything you've learned to a comprehensive real-world scenario.

Who is this course for

This course is intended for:

• Cloud Architects responsible for multi-business unit governance and security.

• Solutions Architects designing global infrastructures that require low latency and high availability.

• Technical Leads looking to optimize enterprise costs and automate complex CI/CD deployment strategies.

Course Objectives

• Governance & Security: Implement centralized permissions and protect against DDoS attacks while securing data in transit, at rest, and in use.

• Advanced Networking: Design hybrid architectures using AWS Transit Gateway and edge services to minimize latency for on-premises and 5G applications.

• Modern Delivery: Optimize CI/CD pipelines using various deployment strategies and identify the best container management options for your workloads.

• Data & Analytics: Determine optimal data management solutions based on query frequency, analysis needs, and storage tiers.

• Operational Excellence: Use AWS cost management and migration tools to implement efficient cloud operating models that balance performance with expenditure.

Prerequisites

• Experience: At least 1 year of experience operating and designing AWS workloads in a professional environment.

• Recommended Knowledge: Completion of Architecting on AWS or equivalent technical proficiency in core AWS services (Compute, Storage, Networking, and Databases).

Course outline

Section 1: Reviewing Architecting Concepts

• Hands-On Lab: Securing Amazon S3 VPC endpoint communications

• Architectural review

• Group Exercise: Review Architecting on AWS core best practices

Section 2: Single to Multiple Accounts

• Multi-account strategies

• AWS IAM Identity Center

• AWS Control Tower

Section 3: Hybrid Connectivity

• AWS Client VPN

• AWS Site-to-Site VPN

• AWS Direct Connect

• Amazon Route 53 Resolver

Section 4: Specialized Infrastructure

• AWS Storage Gateway

• VMware Cloud on AWS

• AWS Outposts

• AWS Local Zones

• AWS Wavelength

Section 5: Connecting Networks

• Hands-On Lab: Configuring AWS Transit Gateway

• AWS Transit Gateway

• AWS Resource Access Manager

• AWS PrivateLink

Section 6: Containers

• Hands-On Lab: Deploying an application with Amazon EKS on Fargate

• Containers

• Container hosting on AWS

• Amazon ECS

• Amazon EKS

Section 7: Continuous Integration/Continuous Delivery (CI/CD)

• CI/CD

• Code services

• Deployment models

• AWS CloudFormation StackSets

Section 8: High Availability and DDoS Protection

• AWS WAF

• AWS Shield Advanced

• AWS Firewall

Section 9: Securing Data

• Cryptography

• AWS KMS

• AWS CloudHSM

• AWS Secrets Manager

Section 10: Large-Scale Data Stores

• Hands-On Lab: Setting up a data lake with Lake Formation

• S3 data management

• Data lakes

• AWS Lake Formation

Section 11: Migrating Workloads

• Hands-On Lab: Migrating an on-premises NFS share using AWS DataSync and Storage Gateway

• Migration process

• Migration tools

• Migrating databases

Section 12: Optimizing Cost

• Cloud cost management

• Cost management tools

• Cost optimization

Section 13: Architecting for the Edge

• Amazon CloudFront

• Lambda@Edge

• AWS Global Accelerator