Courses

Foundational Solutions Architect Use Cases

Web & API Solutions

Static Website Hosting with HTTPS

  • Services: S3, CloudFront, ACM, Route 53

  • Objective: Host a static website with a custom domain and SSL certificate.

  • Learning: Understand global content delivery, DNS setup, and how to secure static content delivery at scale.

Basic REST API with Authentication

  • Services: API Gateway, Lambda, Cognito

  • Objective: Build a simple serverless API protected by user authentication.

  • Learning: Learn API management, integrating authentication, and managing serverless compute for APIs.

HTTP Redirects via Lambda@Edge

  • Services: CloudFront, Lambda@Edge

  • Objective: Create URL redirection rules at the edge for legacy paths.

  • Learning: Explore edge compute, latency reduction, and custom logic deployment close to users.

Global Multi-Region Web App Deployment

  • Services: CloudFront, Route 53, Global Accelerator, Lambda

  • Objective: Deliver a high-availability web app with global failover.

  • Learning: Design for global availability, failover, and performance optimization.

GraphQL API with Real-Time Subscriptions

  • Services: AppSync, DynamoDB Streams, Lambda

  • Objective: Serve real-time data updates via GraphQL subscriptions.

  • Learning: Architect real-time APIs and understand event-driven integration.

Multi-Tenant SaaS API with Rate Limiting

  • Services: API Gateway, Lambda, Cognito, Usage Plans

  • Objective: Provide controlled API access for multiple tenants.

  • Learning: Design for multi-tenancy, usage throttling, and security boundaries.

Automation & Event Workflows

Scheduled File Cleanup in S3

  • Services: EventBridge, Lambda

  • Objective: Automate file deletion from S3 on a schedule.

  • Learning: Understand serverless automation and event-driven scheduling.

Image Upload Trigger for Thumbnail Creation

  • Services: S3, Lambda

  • Objective: Automatically create image thumbnails upon upload.

  • Learning: Implement reactive workflows using S3 event triggers.

Send Notification on EC2 Start

  • Services: CloudTrail, EventBridge, SNS

  • Objective: Notify admins when EC2 instances start.

  • Learning: Build event-driven monitoring with proactive alerting.

Order Processing with Dead Letter Queue (DLQ)

  • Services: SQS, Lambda, DynamoDB

  • Objective: Process customer orders asynchronously with failure handling.

  • Learning: Architect for resilience, decoupling, and error recovery.

CI/CD Event Triggers Across Accounts

  • Services: EventBridge (Cross-account), Lambda

  • Objective: Trigger actions in one AWS account based on events in another.

  • Learning: Cross-account event orchestration and governance.

Automated Compliance Remediation

  • Services: Config Rules, Lambda, SNS

  • Objective: Detect and fix non-compliant resources automatically.

  • Learning: Implement self-healing infrastructure and governance automation.

Data & Storage Use Cases

S3 Lifecycle Management for Archiving

  • Services: S3, Glacier

  • Objective: Automatically archive old files to Glacier.

  • Learning: Optimize storage cost and design data lifecycle strategies.

Pre-Signed URL Generation for File Access

  • Services: S3, Lambda, API Gateway

  • Objective: Secure temporary access to private files.

  • Learning: Implement secure, scalable file access control.

Basic CRUD with DynamoDB

  • Services: API Gateway, Lambda, DynamoDB

  • Objective: Store and manage items using serverless architecture.

  • Learning: Model NoSQL data and understand API integration.

Serverless Data Lake with Querying

  • Services: S3, Glue, Athena, QuickSight

  • Objective: Store and analyze large datasets without servers.

  • Learning: Design data lakes and implement serverless analytics.

Data Replication and Backup Across Regions

  • Services: S3 Replication, DynamoDB Global Tables

  • Objective: Ensure data availability across multiple AWS regions.

  • Learning: Build for disaster recovery and high availability.

Data Ingestion Pipeline with ETL

  • Services: Kinesis, Lambda, Glue, Redshift

  • Objective: Stream and transform data into a warehouse.

  • Learning: Design scalable, real-time ETL pipelines.

Security & Identity Management

IAM Role with Least Privilege

  • Services: IAM

  • Objective: Create a secure, minimal access policy.

  • Learning: Apply principle of least privilege and access control.

Centralized Security Monitoring Hub

  • Services: Security Hub, GuardDuty, Config

  • Objective: Aggregate security alerts across accounts.

  • Learning: Centralize governance and threat detection.

Federated Access with SAML and SSO

  • Services: IAM Identity Center, SAML Provider

  • Objective: Enable external identity federation.

  • Learning: Architect for cross-organization identity management.

Multi-Tenant Identity Isolation with Cognito

  • Services: Cognito, KMS, IAM

  • Objective: Secure user data in a multi-tenant app.

  • Learning: Design identity isolation and tenant-level security.

Monitoring & Operational Insights

CloudWatch Alarm on EC2 Metrics

  • Services: CloudWatch, EC2

  • Objective: Alert on high CPU usage.

  • Learning: Implement monitoring and proactive alerting.

Log Processing and Alerting

  • Services: CloudWatch Logs, Lambda

  • Objective: Analyze logs and trigger actions.

  • Learning: Design reactive log-based workflows.

Resource Monitoring Dashboard

  • Services: CloudWatch Dashboards

  • Objective: Visualize system health in one view.

  • Learning: Aggregate metrics for operational awareness.

Distributed Tracing Across Microservices

  • Services: X-Ray, API Gateway, Lambda, ECS

  • Objective: Trace user requests across services.

  • Learning: Identify performance bottlenecks and trace flow.

Real-Time Alerting and Auto-Remediation

  • Services: CloudWatch, EventBridge, Lambda

  • Objective: Auto-heal resources based on alerts.

  • Learning: Build self-healing architectures.

Log Aggregation and Analysis with OpenSearch

  • Services: CloudWatch Logs, Firehose, OpenSearch

  • Objective: Search and analyze large-scale logs.

  • Learning: Design centralized log analytics.

Deployment & Infrastructure Automation

Deploy Lambda with CloudFormation

  • Services: CloudFormation, Lambda

  • Objective: Automate serverless deployments.

  • Learning: Apply infrastructure-as-code (IaC).

CI/CD Pipeline for Web App

  • Services: CodeCommit, CodeBuild, CodePipeline

  • Objective: Automate app build and deployment.

  • Learning: Design pipelines for repeatable deployments.

Infrastructure Provisioning with CDK

  • Services: AWS CDK

  • Objective: Provision infra using TypeScript/Python.

  • Learning: Use code for scalable infra management.

Multi-Account CI/CD Pipeline

  • Services: CodePipeline, StackSets

  • Objective: Deploy apps across multiple AWS accounts.

  • Learning: Manage complex environments and governance.

Blue/Green Deployment for ECS

  • Services: ECS, ALB, CodeDeploy

  • Objective: Deploy updates with zero downtime.

  • Learning: Implement safe deployment strategies.

Parameterized CloudFormation Stacks

  • Services: CloudFormation, SSM

  • Objective: Deploy reusable templates across environments.

  • Learning: Build modular and flexible IaC.

PreviousExploration SummaryNextSecurity Engineer / Cloud Security Architect Use Cases

Last updated