AWS Certified Solutions Architect Professional (SAP-C02): Design for New Solutions

Course Description

This course focuses on designing new, cloud-native solutions on AWS using modern architectural patterns. Learners will explore data management solutions, including data lakes, streaming, ETL processes, and analytics using services like Amazon S3, DynamoDB, Redshift, and OpenSearch.

The course covers a wide range of compute options, from traditional EC2-based architectures to containerized workloads using ECS and Fargate, and serverless solutions using AWS Lambda and event-driven patterns. Learners will also explore IoT architectures and managed AI services for building intelligent applications.

Additionally, the course emphasizes global architectures, multi-account strategies, and hybrid integrations. Security best practices, including IAM, encryption, WAF, and threat detection, are covered in depth. Cost management strategies and optimization techniques are also explored.

Through hands-on labs and real-world scenarios, learners will gain the expertise needed to design scalable, secure, and high-performing solutions while preparing for the AWS Certified Solutions Architect Professional (SAP-C02) exam.

Who is this course for

• Experienced AWS Solutions Architects

• Senior developers and DevOps engineers

• Cloud architects designing modern applications

• Professionals preparing for SAP-C02 certification

• Engineers building large-scale, cloud-native systems

Course Objectives

By the end of this course, learners will be able to:

• Design modern data architectures using AWS data and analytics services

• Architect compute solutions using EC2, containers, and serverless technologies

• Build event-driven and microservices-based systems

• Design IoT and managed service-based architectures

• Implement global, multi-region, and multi-account solutions

• Apply advanced security practices for cloud-native applications

• Optimize cost and performance for new solutions

• Evaluate architectural trade-offs and select appropriate AWS services

• Prepare effectively for the SAP-C02 certification exam

Prerequisites

• Basic understanding of AWS core services

• Familiarity with cloud storage concepts

• Some experience with AWS console or CLI is helpful

• Basic knowledge of data management concepts (optional)

Course outline

Section 1: Modern Data Management

• Developing New Data Solutions on AWS

• Advanced Amazon S3 Features

• Exposing Data from S3

• ETL on AWS

• Amazon OpenSearch

• Amazon DynamoDB

• Lab: Defining Access Patterns for DynamoDB

• Amazon RDS

• Data Backup Strategies

• Amazon Aurora

• Data Warehousing with Amazon Redshift

• Processing Data Streams

Section 2: Classic Compute Architecture

• Amazon EC2

• Custom AMIs

• Lab: Developing and Deploying Custom AMIs

• EBS Volumes

• Managing Instances with Systems Manager

• Elastic Beanstalk

• Maintaining Elasticity and High Availability

• Lab: Troubleshooting Unhealthy Instances in an Auto-scaling Group

• Securing Connections to Data Sources

Section 3: Containerized Workload Architecture

• Implementing Containers on AWS

• AWS Fargate

• Lab: Fargate Cluster

• Isolating Containerized Workloads

• Securing Container Access to Data Sources

• ECS Compute Types

Section 4: Serverless and Event-driven Architecture

• What Is Serverless?

• Managing Serverless Architecture

• AWS Lambda

• driven Architecture

• Lab: Triggering an Event from CloudTrail

• SQS Integrations

• Lab: Defining an SNS Topic in CloudFormation

• Common Event Sources

• Orchestrating Workflows with AWS Step Functions

• Monitoring Serverless Applications with AWS X-Ray

• Developing APIs

• Lab: Creating Lambda Proxy Integrations for Your API Gateway

Section 5: Internet-of-things Architecture

• IoT Core

• AWS IoT Device Management

• Ingesting and Processing IoT Data

• Other AWS IoT Services

Section 6: Leveraging Managed Services

• Managed Services on AWS

• Amazon Rekognition

• Amazon Textract

• Amazon Lex

• Amazon Connect

• Development Pipelines

• Lab: Enabling Feature Development with CodePipeline

• Amazon AppStream 2.0

• Amazon WorkSpaces

• Amazon MediaConvert

• Amazon Managed Blockchain

• AI-managed Services Overview

Section 7: Global Architecture and Multi-account Considerations

• Integrating On-premises Data and Applications

• Securing On-premises Access to AWS Applications

• Creating a Content Distribution Network

• Lab: Requiring HTTPS Using CloudFront

• Governing New Solutions across Multiple Accounts

• Advanced Route 53

• Lab: Configuring Access to a Database Server across VPCs

• Multi-Region Backup Strategies

• Lab: S3 Replication Rules

Section 8: Security for New Solutions

• IAM and the Principle of Least Privilege

• Credentials and Secrets Management

• Lab: Referencing Secrets in AWS CDK

• Amazon Cognito

• Amazon Macie and Auditing Access to Sensitive Data

• User Authentication with Identity Federation

• Encrypting Data at Rest

• Lab: Use IaC to Grant an EC2 Instance Access to DynamoDB

• Encrypting Data in Transit

• Managing Certificates for Secure Connections

• AWS Web Application Firewall (WAF)

• DDoS Protection (Shield, Shield Advanced, CloudFront, and WAF)

• Advanced VPC Security

• Identifying Vulnerabilities with Amazon Inspector

• Centralizing Security Visibility with Security Hub

Section 9: New Solution Cost Management

• AWS Compute Optimizer

• Purchasing Reserved Capacity

• Organizational Tagging Strategies

• Lab: Implementing and Testing Tagging Standards

• Data Transfer Cost Management

• Monitoring Costs for New Solutions

Section 10: SAP-C02 - Design for New Solutions Exam Tips

• Classic Compute Mind Map

• Serverless and Event-driven Architecture Mind Map

• Integrating Concepts for New Solutions

• SAP-C02 Scenario Study - Part 1

• SAP-C02 Scenario Study - Part 2