AWS Solutions Architect Associate

🔑 IAM Avançado: Policies JSON, STS e Organizations

Policy JSON em profundidade, STS AssumeRole, cross-account access, AWS Organizations, SCPs, Identity Center (SSO).

⏱ 14 min·+75 XP

🕸️ VPC em Profundidade: NAT, Peering e Transit Gateway

VPC design real, subnets públicas/privadas, NAT Gateway vs NAT Instance, VPC Peering, Transit Gateway, PrivateLink, VPN vs Direct Connect.

⏱ 16 min·+85 XP

🌐 Route 53, CloudFront e Global Accelerator

Route 53 routing policies (simple, weighted, latency, failover, geo, multi-value), CloudFront behaviors, Global Accelerator.

⚖️ EC2 Profissional: Auto Scaling e Load Balancers

Purchasing options profundos, Auto Scaling Groups, ALB vs NLB vs GWLB, target groups, placement groups, health checks.

📦 ECS vs EKS: Orquestração de Containers

ECS (Fargate vs EC2 launch type), EKS (Kubernetes managed), service discovery, service mesh, quando escolher cada um.

⚡ Serverless Avançado: Lambda, API GW e Step Functions

Lambda deep dive (cold start, concurrency, layers, destinations), API Gateway (REST vs HTTP), Step Functions workflows.

🪣 S3 Profundo: Classes, Lifecycle e Object Lock

Todas storage classes, lifecycle policies, versioning, replication (CRR/SRR), Object Lock, encryption (SSE-S3, SSE-KMS, SSE-C, CSE).

💽 EBS, EFS e FSx: Quando Usar Cada Um

EBS volume types (gp3, io2, st1, sc1), snapshots, EFS performance/throughput modes, FSx Windows/Lustre/NetApp, Storage Gateway.

🗃️ Bancos: Multi-AZ, Read Replicas e DynamoDB

RDS Multi-AZ vs Read Replicas, Aurora (cluster + Serverless v2), DynamoDB (GSI/LSI, DAX, Streams, on-demand vs provisioned).

⏱ 17 min·+90 XP

🚀 Caching: ElastiCache, DAX e CloudFront

ElastiCache Redis vs Memcached, DAX para DynamoDB, CloudFront cache behaviors, patterns (cache-aside, write-through).

📨 Messaging: SQS, SNS, EventBridge e Kinesis

SQS (Standard vs FIFO, DLQ), SNS (topic fanout), EventBridge (event bus, rules, schedules), Kinesis (Streams vs Firehose vs Analytics).

🔒 Segurança Avançada: KMS, Secrets Manager e WAF

KMS envelope encryption, CMK vs AWS managed key, Secrets Manager vs Parameter Store, WAF rules, Shield Standard vs Advanced.

🆘 Disaster Recovery: RPO, RTO e 4 Estratégias

Backup & Restore, Pilot Light, Warm Standby, Multi-Site Active-Active — custo vs RTO/RPO, AWS Backup, cross-region DR.

💵 Otimização de Custos: RI, Savings Plans e Spot

Reserved Instances (standard/convertible), Savings Plans (compute/EC2), Spot Instances, Instance Scheduler, Trusted Advisor, Cost Allocation Tags.

📈 Analytics: Athena, EMR, Kinesis e Glue

Athena (serverless SQL on S3), EMR (Hadoop/Spark), Kinesis Data Streams vs Firehose, Glue ETL, Redshift Spectrum, QuickSight.

🚚 Migração para o Arquiteto: DMS, SCT, MGN e DRS

DMS + SCT para migração de bancos heterogêneos, MGN para lift-and-shift, DRS para DR, DataSync, Transfer Family e Snow Family em cenários arquiteturais.

⏱ 12 min·+65 XP

🌉 Rede Híbrida: Direct Connect, VPN, PrivateLink e VPC Endpoints

Direct Connect + VIFs, Site-to-Site VPN, Client VPN, PrivateLink, Gateway vs Interface Endpoints, Route 53 Resolver híbrido e Transit Gateway inter-region.

🧬 ML/IA para Arquiteto: SageMaker, Bedrock e Pipelines

Arquiteturas de inferência (real-time endpoint, serverless, async, batch), SageMaker + MLOps, integração com Bedrock e data lake alimentando pipelines de ML.

🏆 Simulado SAA-C03 Comentado

25 questões no estilo oficial SAA-C03 com explicações detalhadas. Arquitetura, decisões de design, trade-offs de custo e resiliência.

⏱ 25 min·+100 XP