{"id":3212,"date":"2025-05-28T11:00:00","date_gmt":"2025-05-28T05:30:00","guid":{"rendered":"https:\/\/www.skilr.com\/blog\/?p=3212"},"modified":"2025-05-28T14:15:12","modified_gmt":"2025-05-28T08:45:12","slug":"are-aws-specialty-certifications-worth-it","status":"publish","type":"post","link":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/","title":{"rendered":"Are AWS specialty certifications worth it?"},"content":{"rendered":"\n<p>As cloud adoption matures, so does the demand for deeper, more specialized expertise. While general AWS certifications like Solutions Architect \u2013 Associate or DevOps Engineer \u2013 Professional are well-known entry points into the cloud world, many professionals are now asking: \u201cShould I pursue an AWS Specialty certification?\u201d<\/p>\n\n\n\n<p>AWS Specialty certifications are designed to validate advanced knowledge in specific technical domains \u2014 from security and networking to machine learning, analytics, databases, and even SAP on AWS. They go beyond broad architectural principles and dive into hands-on, production-level problem solving in high-stakes environments.<\/p>\n\n\n\n<p>But these exams aren\u2019t easy. They\u2019re narrower in scope but deeper in complexity, and they demand real experience with multiple AWS services working together. So, the real question is: Are they worth your time, effort, and money?<\/p>\n\n\n\n<p>In this blog, we\u2019ll break it all down \u2014 what these certifications cover, who should take them, how difficult they are, and whether they actually boost your career or salary. Whether you\u2019re a cloud engineer, a security professional, or a data specialist, this guide will help you decide if an AWS Specialty certification is the right next step.<\/p>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-vivid-cyan-blue-background-color has-text-color has-background has-link-color wp-elements-cb96fc78da924749ee3679180f566ed7\"><strong>Overview of AWS Specialty Certifications<\/strong><\/h3>\n\n\n\n<p>AWS currently offers six Specialty-level certifications, each designed to validate advanced skills in a focused technical area. These are not broad, entry-level exams \u2014 they\u2019re targeted toward professionals who already have hands-on experience and want to deepen their expertise in critical, high-demand domains.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img data-dominant-color=\"dad4ea\" data-has-transparency=\"false\" style=\"--dominant-color: #dad4ea;\" decoding=\"async\" sizes=\"(max-width: 544px) 100vw, 544px\" src=\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/image.png\" alt=\"AWS Specialty certification 2025 \" class=\"wp-image-3228 not-transparent\"\/><\/figure>\n<\/div>\n\n\n<p>Here\u2019s a quick look at each:<\/p>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-black-background-color has-text-color has-background has-link-color wp-elements-899533d1676835eadaf1793f601c76d7\"><strong>AWS Certified Security \u2013 Specialty<\/strong><\/h3>\n\n\n\n<p>Focuses on securing workloads in AWS. It covers identity and access management (IAM), data protection, logging and monitoring, incident response, and compliance. Ideal for cloud security engineers, DevSecOps professionals, and those in regulated industries like finance or healthcare.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Who should take the exam?<\/strong><\/h4>\n\n\n\n<p>AWS certified security \u2013 specialty (SCS-C01) examination is intended for individuals who perform a security role. The AWS exam validates an examinee\u2019s ability to effectively demonstrate knowledge about securing the AWS platform. There are a few AWS Certified security specialty prerequisites, which include candidates being required to have a minimum of five years of IT security experience, designing and implementing security solutions. Also, at least two years of hands-on experience securing AWS workloads with security controls for workloads on AWS.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>AWS Certified Security Specialty Course Outline<\/strong><\/h4>\n\n\n\n<p>The AWS Certified Security Specialty course covers the following domains:<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 1: Threat Detection and Incident Response (14%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 1.1: Design and implement an incident response plan.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS best practices for incident response&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-security-incident-response-guide\/aws-security-incident-response-guide.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Security Incident Response Guide<\/a>)<\/li>\n\n\n\n<li>Cloud incidents<\/li>\n\n\n\n<li>Roles and responsibilities in the incident response plan&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-security-incident-response-guide\/define-roles-and-responsibilities.html\" target=\"_blank\" rel=\"noreferrer noopener\">Define roles and responsibilities<\/a>)<\/li>\n\n\n\n<li>AWS Security Finding Format (ASFF)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/securityhub\/latest\/userguide\/securityhub-findings-format.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Security Finding Format (ASFF)<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 1.2: Detect security threats and anomalies by using AWS services.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS managed security services that detect threats&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonS3\/latest\/userguide\/monitoring-data-security.html#:~:text=To%20monitor%20the%20security%20of,these%20managed%20AWS%20security%20services.&amp;text=Amazon%20GuardDuty%20is%20a%20threat,findings%20for%20visibility%20and%20remediation.\" target=\"_blank\" rel=\"noreferrer noopener\">Monitoring data security with managed AWS security services<\/a>)<\/li>\n\n\n\n<li>Anomaly and correlation techniques to join data across services&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/en_us\/quicksight\/latest\/user\/anomaly-detection-outliers-and-key-drivers.html\" target=\"_blank\" rel=\"noreferrer noopener\">Concepts for anomaly or outlier detection<\/a>)<\/li>\n\n\n\n<li>Visualizations to identify anomalies<\/li>\n\n\n\n<li>Strategies to centralize security findings&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/navigating-gdpr-compliance\/centralized-security-management.html#:~:text=Security%20Hub%20centralizes%20and%20prioritizes,the%20highest%20priority%20security%20issues.\" target=\"_blank\" rel=\"noreferrer noopener\">Centralized Security Management<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 1.3: Respond to compromised resources and workloads.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS Security Incident Response Guide&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-security-incident-response-guide\/aws-security-incident-response-guide.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Security Incident Response Guide<\/a>)<\/li>\n\n\n\n<li>Resource isolation mechanisms&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/establishing-your-cloud-foundation-on-aws\/design-isolated-resource-environments.html\" target=\"_blank\" rel=\"noreferrer noopener\">Design isolated resource environments<\/a>)<\/li>\n\n\n\n<li>Techniques for root cause analysis&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/what-is\/root-cause-analysis\/\" target=\"_blank\" rel=\"noreferrer noopener\">What is Root Cause Analysis (RCA)?<\/a>)<\/li>\n\n\n\n<li>Data capture mechanisms&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/model-monitor-data-capture.html\" target=\"_blank\" rel=\"noreferrer noopener\">Capture data<\/a>)<\/li>\n\n\n\n<li>Log analysis for event validation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/logs\/AnalyzingLogData.html\" target=\"_blank\" rel=\"noreferrer noopener\">Analyzing log data with CloudWatch Logs Insights<\/a>)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 2: Security Logging and Monitoring (18%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 2.1: Design and implement monitoring and alerting to address security events.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS services that monitor events and provide alarms (for example, CloudWatch, EventBridge)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/monitoring\/cloudwatch-and-eventbridge.html\" target=\"_blank\" rel=\"noreferrer noopener\">Alarm events and EventBridge<\/a>)<\/li>\n\n\n\n<li>AWS services that automate alerting (for example, Lambda, Amazon Simple Notification Service [Amazon SNS], Security Hub)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/securityhub\/latest\/userguide\/securityhub-cloudwatch-events.html\" target=\"_blank\" rel=\"noreferrer noopener\">Automated response and remediation<\/a>)<\/li>\n\n\n\n<li>Tools that monitor metrics and baselines (for example, GuardDuty, Systems Manager)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 2.2: Troubleshoot security monitoring and alerting.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Configuration of monitoring services (for example, Security Hub)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/securityhub\/latest\/userguide\/what-is-securityhub.html\" target=\"_blank\" rel=\"noreferrer noopener\">What is AWS Security Hub?<\/a>)<\/li>\n\n\n\n<li>Relevant data that indicates security events&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-security-incident-response-guide\/logging-and-events.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging and events<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 2.3: Design and implement a logging solution.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS services and features that provide logging capabilities (for example, VPC Flow Logs, DNS logs, AWS CloudTrail, Amazon CloudWatch Logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>)<\/li>\n\n\n\n<li>Attributes of logging capabilities (for example, log levels, type, verbosity)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/lambda\/latest\/dg\/python-logging.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Lambda function logging in Python<\/a>)<\/li>\n\n\n\n<li>Log destinations and lifecycle management (for example, retention period)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonS3\/latest\/userguide\/object-lifecycle-mgmt.html\" target=\"_blank\" rel=\"noreferrer noopener\">Managing your storage lifecycle<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 2.4: Troubleshoot logging solutions.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Capabilities and use cases of AWS services that provide data sources (for example, log level, type, verbosity, cadence, timeliness, immutability)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/prescriptive-guidance\/latest\/logging-monitoring-for-application-owners\/aws-services-logging-monitoring.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS services for logging and monitoring<\/a>)<\/li>\n\n\n\n<li>AWS services and features that provide logging capabilities (for example, VPC Flow Logs, DNS logs, CloudTrail, CloudWatch Logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>)<\/li>\n\n\n\n<li>Access permissions that are necessary for logging&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/logs\/permissions-reference-cwl.html\" target=\"_blank\" rel=\"noreferrer noopener\">CloudWatch Logs permissions reference<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 2.5: Design a log analysis solution.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Services and tools to analyze captured logs (for example, Athena, CloudWatch Logs filter)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/athena\/latest\/ug\/security-logging-monitoring.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging and monitoring in Athena<\/a>)<\/li>\n\n\n\n<li>Log analysis features of AWS services (for example, CloudWatch Logs Insights, CloudTrail Insights, Security Hub insights)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/logs\/AnalyzingLogData.html\" target=\"_blank\" rel=\"noreferrer noopener\">Analyzing log data with CloudWatch Logs Insights<\/a>)<\/li>\n\n\n\n<li>Log format and components (for example, CloudTrail logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/awscloudtrail\/latest\/userguide\/cloudtrail-log-file-examples.html\" target=\"_blank\" rel=\"noreferrer noopener\">CloudTrail log file examples<\/a>)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 3: Infrastructure Security (20%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 3.1: Design and implement security controls for edge services.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Security features on edge services (for example, AWS WAF, load balancers, Amazon Route 53, Amazon CloudFront, AWS Shield)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/waf\/latest\/developerguide\/cloudfront-features.html\" target=\"_blank\" rel=\"noreferrer noopener\">How AWS WAF works with Amazon CloudFront features<\/a>)<\/li>\n\n\n\n<li>Common attacks, threats, and exploits (for example, Open Web Application Security Project [OWASP] Top 10, DDoS)<\/li>\n\n\n\n<li>Layered web application architecture&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/serverless-multi-tier-architectures-api-gateway-lambda\/three-tier-architecture-overview.html\" target=\"_blank\" rel=\"noreferrer noopener\">Three-tier architecture overview<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 3.2: Design and implement network security controls.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>VPC security mechanisms (for example, security groups, network ACLs, AWS Network Firewall)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-security-best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">Security best practices for your VPC<\/a>)<\/li>\n\n\n\n<li>Inter-VPC connectivity (for example, AWS Transit Gateway, VPC endpoints)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-vpc-connectivity-options\/amazon-vpc-to-amazon-vpc-connectivity-options.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon VPC-to-Amazon VPC connectivity options<\/a>)<\/li>\n\n\n\n<li>Security telemetry sources (for example, Traffic Mirroring, VPC Flow Logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>)<\/li>\n\n\n\n<li>VPN technology, terminology, and usage&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/VPC_VPN.html\" target=\"_blank\" rel=\"noreferrer noopener\">What is AWS Site-to-Site VPN?<\/a>)<\/li>\n\n\n\n<li>On-premises connectivity options (for example, AWS VPN, AWS Direct Connect)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-vpc-connectivity-options\/aws-direct-connect.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Direct Connect<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 3.3: Design and implement security controls for compute workloads.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Provisioning and maintenance of EC2 instances (for example, patching, inspecting, creation of snapshots and AMIs, use of EC2 Image Builder)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/imagebuilder\/latest\/userguide\/what-is-image-builder.html\" target=\"_blank\" rel=\"noreferrer noopener\">What is EC2 Image Builder?<\/a>)<\/li>\n\n\n\n<li>IAM instance roles and IAM service roles&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/id_roles.html\" target=\"_blank\" rel=\"noreferrer noopener\">IAM roles<\/a>)<\/li>\n\n\n\n<li>Services that scan for vulnerabilities in compute workloads (for example, Amazon Inspector, Amazon Elastic Container Registry [Amazon ECR])&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/inspector\/latest\/user\/scanning-ecr.html\" target=\"_blank\" rel=\"noreferrer noopener\">Scanning Amazon ECR container images with Amazon Inspector<\/a>)<\/li>\n\n\n\n<li>Host-based security (for example, firewalls, hardening)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 3.4: Troubleshoot network security.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>How to analyze reachability (for example, by using VPC Reachability Analyzer and Amazon Inspector)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/reachability\/getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Getting started with Reachability Analyzer<\/a>)<\/li>\n\n\n\n<li>Fundamental TCP\/IP networking concepts (for example, UDP compared with TCP, ports, Open Systems Interconnection [OSI] model, network operating system utilities)<\/li>\n\n\n\n<li>How to read relevant log sources (for example, Route 53 logs, AWS WAF logs, VPC Flow Logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 4: Identity and Access Management (16%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 4.1: Design, implement, and troubleshoot authentication for AWS resources.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Methods and services for creating and managing identities (for example, federation, identity providers, AWS IAM Identity Center [AWS Single Sign-On], Amazon Cognito)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/id_roles_providers.html\" target=\"_blank\" rel=\"noreferrer noopener\">Identity providers and federation<\/a>)<\/li>\n\n\n\n<li>Long-term and temporary credentialing mechanisms&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/framework\/sec_identities_unique.html#:~:text=The%20only%20time%20you%20should,methods%2C%20temporary%20credentials%20are%20generated.\" target=\"_blank\" rel=\"noreferrer noopener\">Use temporary credentials<\/a>)<\/li>\n\n\n\n<li>How to troubleshoot authentication issues (for example, by using CloudTrail, IAM Access Advisor, and IAM policy simulator)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/awscloudtrail\/latest\/userguide\/security_iam_troubleshoot.html\" target=\"_blank\" rel=\"noreferrer noopener\">Troubleshooting AWS CloudTrail identity and access<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 4.2: Design, implement, and troubleshoot authorization for AWS resources.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Different IAM policies (for example, managed policies, inline policies, identity-based policies, resource-based policies, session control policies)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/access_policies.html\" target=\"_blank\" rel=\"noreferrer noopener\">Policies and permissions in IAM<\/a>)<\/li>\n\n\n\n<li>Components and impact of a policy (for example, Principal, Action, Resource, Condition)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/reference_policies_elements.html\" target=\"_blank\" rel=\"noreferrer noopener\">IAM JSON policy elements reference<\/a>)<\/li>\n\n\n\n<li>How to troubleshoot authorization issues (for example, by using CloudTrail, IAM Access Advisor, and IAM policy simulator)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/awscloudtrail\/latest\/userguide\/security_iam_troubleshoot.html\" target=\"_blank\" rel=\"noreferrer noopener\">Troubleshooting AWS CloudTrail identity and access<\/a>)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 5: Data Protection (18%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 5.1: Design and implement controls that provide confidentiality and integrity for data in transit.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>TLS concepts&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/app-mesh\/latest\/userguide\/tls.html\" target=\"_blank\" rel=\"noreferrer noopener\">Transport Layer Security (TLS)<\/a>)<\/li>\n\n\n\n<li>VPN concepts (for example, IPsec)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/what-is\/vpn\/#:~:text=your%20internet%20traffic.-,Encryption,packet%20of%20a%20data%20stream.\" target=\"_blank\" rel=\"noreferrer noopener\">What is a VPN (Virtual Private Network)?<\/a>)<\/li>\n\n\n\n<li>Secure remote access methods (for example, SSH, RDP over Systems Manager Session Manager)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/systems-manager\/latest\/userguide\/session-manager.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Systems Manager&nbsp;Session Manager<\/a>)<\/li>\n\n\n\n<li>Systems Manager Session Manager concepts<\/li>\n\n\n\n<li>How TLS certificates work with various network services and resources (for example, CloudFront, load balancers)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/network\/create-tls-listener.html\" target=\"_blank\" rel=\"noreferrer noopener\">TLS listeners for your Network Load Balancer<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 5.2: Design and implement controls that provide confidentiality and integrity for data at rest.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Encryption technique selection (for example, client-side, server-side, symmetric, asymmetric)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/kms\/latest\/developerguide\/concepts.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS KMS concepts<\/a>)<\/li>\n\n\n\n<li>Integrity-checking techniques (for example, hashing algorithms, digital signatures)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonS3\/latest\/userguide\/checking-object-integrity.html\" target=\"_blank\" rel=\"noreferrer noopener\">Checking object integrity<\/a>)<\/li>\n\n\n\n<li>Resource policies (for example, for DynamoDB, Amazon S3, and AWS Key Management Service [AWS KMS])&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/kms\/latest\/developerguide\/key-policies.html\" target=\"_blank\" rel=\"noreferrer noopener\">Key policies in AWS KMS<\/a>)<\/li>\n\n\n\n<li>IAM roles and policies&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/access_policies.html\" target=\"_blank\" rel=\"noreferrer noopener\">Policies and permissions in IAM<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 5.3: Design and implement controls to manage the lifecycle of data at rest.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Designing S3 Lifecycle mechanisms to retain data for required retention periods (for example, S3 Object Lock, S3 Glacier Vault Lock, S3 Lifecycle policy)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonS3\/latest\/userguide\/object-lifecycle-mgmt.html\" target=\"_blank\" rel=\"noreferrer noopener\">Managing your storage lifecycle<\/a>)<\/li>\n\n\n\n<li>Designing automatic lifecycle management for AWS services and resources (for example, Amazon S3, EBS volume snapshots, RDS volume snapshots, AMIs, container images, CloudWatch log groups, Amazon Data Lifecycle Manager)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/ebs\/latest\/userguide\/snapshot-lifecycle.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Data Lifecycle Manager<\/a>)<\/li>\n\n\n\n<li>Establishing schedules and retention for AWS Backup across AWS services&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/aws-backup\/latest\/devguide\/creating-a-backup-plan.html\" target=\"_blank\" rel=\"noreferrer noopener\">Creating a backup plan<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 5.4: Design and implement controls to protect credentials, secrets, and cryptographic key materials.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Secrets Manager&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/secretsmanager\/latest\/userguide\/intro.html\" target=\"_blank\" rel=\"noreferrer noopener\">What is AWS Secrets Manager?<\/a>)<\/li>\n\n\n\n<li>Systems Manager Parameter Store&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/systems-manager\/latest\/userguide\/systems-manager-parameter-store.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Systems Manager&nbsp;Parameter Store<\/a>)<\/li>\n\n\n\n<li>Usage and management of symmetric keys and asymmetric keys (for example, AWS KMS)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Domain 6: Management and Security Governance (14%)<\/strong><\/h4>\n\n\n\n<p>Task Statement 6.1: Develop a strategy to centrally deploy and manage AWS accounts.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Multi-account strategies&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/organizing-your-aws-environment\/organizing-your-aws-environment.html\" target=\"_blank\" rel=\"noreferrer noopener\">Organizing Your AWS Environment Using Multiple Accounts<\/a>)<\/li>\n\n\n\n<li>Managed services that allow delegated administration&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/organizations\/latest\/userguide\/orgs_integrate_services_list.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS services that you can use with AWS Organizations<\/a>)<\/li>\n\n\n\n<li>Policy-defined guardrails<\/li>\n\n\n\n<li>Root account best practices&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/root-user-best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">Root user best practices for your AWS account<\/a>)<\/li>\n\n\n\n<li>Cross-account roles&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/tutorial_cross-account-with-roles.html\" target=\"_blank\" rel=\"noreferrer noopener\">Delegate access across AWS accounts using IAM roles<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 6.2: Implement a secure and consistent deployment strategy for cloud resources.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Deployment best practices with infrastructure as code (IaC) (for example, AWS CloudFormation template hardening and drift detection)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSCloudFormation\/latest\/UserGuide\/best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS CloudFormation best practices<\/a>)<\/li>\n\n\n\n<li>Best practices for tagging&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/tagging-best-practices\/tagging-best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">Best Practices for Tagging AWS Resources<\/a>)<\/li>\n\n\n\n<li>Centralized management, deployment, and versioning of AWS services<\/li>\n\n\n\n<li>Visibility and control over AWS infrastructure<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 6.3: Evaluate the compliance of AWS resources.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Data classification by using AWS services&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/data-classification\/data-classification-overview.html\" target=\"_blank\" rel=\"noreferrer noopener\">Data classification overview<\/a>)<\/li>\n\n\n\n<li>How to assess, audit, and evaluate the configurations of AWS resources (for example, by using AWS Config)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config.html\" target=\"_blank\" rel=\"noreferrer noopener\">Evaluating Resources with AWS Config Rules<\/a>)<\/li>\n\n\n\n<li>Identifying sensitive data by using Macie&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/macie\/latest\/user\/data-classification.html\" target=\"_blank\" rel=\"noreferrer noopener\">Discovering sensitive data with Amazon Macie<\/a>)<\/li>\n\n\n\n<li>Creating AWS Config rules for detection of noncompliant AWS resources&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/remediation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Remediating Noncompliant Resources with AWS Config Rules<\/a>)<\/li>\n\n\n\n<li>Collecting and organizing evidence by using Security Hub and AWS Audit Manager&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/audit-manager\/latest\/userguide\/review-evidence.html\" target=\"_blank\" rel=\"noreferrer noopener\">Reviewing the evidence in an assessment<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>Task Statement 6.4: Identify security gaps through architectural reviews and cost analysis.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS cost and usage for anomaly identification&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/cost-management\/latest\/userguide\/getting-started-ad.html\" target=\"_blank\" rel=\"noreferrer noopener\">Getting started with AWS Cost Anomaly Detection<\/a>)<\/li>\n\n\n\n<li>Strategies to reduce attack surfaces&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-best-practices-ddos-resiliency\/attack-surface-reduction.html#:~:text=Resources%20that%20are%20not%20exposed,not%20accessible%20from%20the%20internet.\" target=\"_blank\" rel=\"noreferrer noopener\">Attack surface reduction<\/a>)<\/li>\n\n\n\n<li>AWS Well-Architected Framework&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/framework\/welcome.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Well-Architected Framework<\/a>)<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-black-background-color has-text-color has-background has-link-color wp-elements-3a2d16cbba7549f04469f7fb7d98a9b9\"><strong>AWS Certified Advanced Networking \u2013 Specialty<\/strong><\/h3>\n\n\n\n<p>Validates deep knowledge of hybrid cloud networking, connectivity, routing, DNS, and network security on AWS. It\u2019s highly technical and meant for network engineers, architects, or anyone managing complex, multi-VPC or hybrid network setups.<\/p>\n\n\n\n<p><strong>Who should take the exam?<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Network Engineers \/ Architects<\/strong>\n<ul class=\"wp-block-list\">\n<li>Professionals who design and implement network architectures at scale.<\/li>\n\n\n\n<li>Experience with hybrid IT networks and integrating on-prem with cloud.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Cloud Engineers \/ DevOps Engineers<\/strong>\n<ul class=\"wp-block-list\">\n<li>Those managing VPCs, routing, DNS, and network security in cloud environments.<\/li>\n\n\n\n<li>Working with AWS services like Transit Gateway, Direct Connect, VPNs, Route 53, etc.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Security Engineers (with a Networking focus)<\/strong>\n<ul class=\"wp-block-list\">\n<li>Professionals ensuring secure communication and segmentation within and across AWS.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>SysAdmins or IT Admins<\/strong>\n<ul class=\"wp-block-list\">\n<li>Especially those transitioning into AWS networking roles.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Consultants and Solution Architects<\/strong>\n<ul class=\"wp-block-list\">\n<li>Who recommend and implement networking solutions for clients on AWS.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Recommended Experience<\/strong><\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li>5+ years of hands-on network architecture experience<\/li>\n\n\n\n<li>2+ years of experience with AWS networking<\/li>\n\n\n\n<li>Deep understanding of the OSI model, CIDR, BGP, DNS, and IP routing<\/li>\n\n\n\n<li>Comfort with automation (CloudFormation, Terraform, or similar)<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>AWS Certified Advanced Networking \u2013 Specialty<\/strong> <strong>Course Outline<\/strong><\/h4>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 1: Network Design (30%)<\/strong><\/h5>\n\n\n\n<p>Task Statement 1.1: Design a solution that incorporates edge network services to optimize user performance and traffic management for global architectures.<\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Design patterns for the usage of content distribution networks (for example, Amazon CloudFront)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/mediapackage\/latest\/ug\/cdns.html\" target=\"_blank\" rel=\"noreferrer noopener\">Working with Content Delivery Networks (CDNs)<\/a>)<\/li>\n\n\n\n<li>Design patterns for global traffic management (for example, AWS Global Accelerator)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/global-accelerator\/latest\/dg\/getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Getting started with AWS Global Accelerator<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/networking-and-content-delivery\/traffic-management-with-aws-global-accelerator\/\" target=\"_blank\" rel=\"noreferrer noopener\">Traffic management with AWS Global Accelerator<\/a>)<\/li>\n\n\n\n<li>Integration patterns for content distribution networks and global traffic management with other services (for example, Elastic Load Balancing, Amazon API Gateway)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-overview\/networking-services.html\" target=\"_blank\" rel=\"noreferrer noopener\">Networking and Content Delivery<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/networking-and-content-delivery\/introduction-to-network-transformation-on-aws-part-2\/\" target=\"_blank\" rel=\"noreferrer noopener\">Introduction to Network Transformation on AWS<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 1.2: Design DNS solutions that meet public, private, and hybrid requirements.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>DNS protocol (for example, DNS records, timers, DNSSEC, DNS delegation, zones)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/domain-configure-dnssec.html\" target=\"_blank\" rel=\"noreferrer noopener\">Configuring DNSSEC for a domain<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/ResourceRecordTypes.html\" target=\"_blank\" rel=\"noreferrer noopener\">Supported DNS record types<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/route-53-concepts.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Route&nbsp;53 concepts<\/a>)<\/li>\n\n\n\n<li>DNS logging and monitoring&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/logging-monitoring.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging and monitoring in Amazon Route&nbsp;53<\/a>)<\/li>\n\n\n\n<li>Amazon Route 53 features (for example, alias records, traffic policies, resolvers, health checks)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/dns-failover.html\" target=\"_blank\" rel=\"noreferrer noopener\">Creating Amazon Route&nbsp;53 health checks and configuring DNS failover<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/health-checks-how-route-53-chooses-records.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Route&nbsp;53 chooses records when health checking<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/route53\/faqs\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Route 53 FAQs<\/a>)<\/li>\n\n\n\n<li>Integration of Route 53 with other AWS networking services (for example, Amazon VPC)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/integration-with-other-services.html\" target=\"_blank\" rel=\"noreferrer noopener\">Integration with other services<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver.html\" target=\"_blank\" rel=\"noreferrer noopener\">Resolving DNS queries between VPCs and your network<\/a>)<\/li>\n\n\n\n<li>Integration of Route 53 with hybrid, multi-account, and multi-Region options&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/architecture\/using-route-53-private-hosted-zones-for-cross-account-multi-region-architectures\/\" target=\"_blank\" rel=\"noreferrer noopener\">Using Route 53 Private Hosted Zones for Cross-account Multi-region Architectures<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/security\/simplify-dns-management-in-a-multiaccount-environment-with-route-53-resolver\/\" target=\"_blank\" rel=\"noreferrer noopener\">Simplify DNS management in a multi-account environment<\/a>)<\/li>\n\n\n\n<li>Domain Registration&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/domain-register.html\" target=\"_blank\" rel=\"noreferrer noopener\">Registering a new domain<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 1.3: Design solutions that integrate load balancing to meet high availability, scalability,<br>and security requirements.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>How load balancing works at layer 3, layer 4, and layer 7 of the OSI model&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonECS\/latest\/developerguide\/load-balancer-types.html\" target=\"_blank\" rel=\"noreferrer noopener\">Load balancer types<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/elasticloadbalancing\/features\/\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic Load Balancing features<\/a>)<\/li>\n\n\n\n<li>Different types of load balancers and how they meet requirements for network design, high availability, and security&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonECS\/latest\/developerguide\/load-balancer-types.html\" target=\"_blank\" rel=\"noreferrer noopener\">Load balancer types<\/a>)<\/li>\n\n\n\n<li>Connectivity patterns that apply to load balancing based on the use case (for example, internal load balancers, external load balancers)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/application\/application-load-balancers.html\" target=\"_blank\" rel=\"noreferrer noopener\">Application Load Balancers<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/elasticloadbalancing\/features\/\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic Load Balancing features<\/a>)<\/li>\n\n\n\n<li>Scaling factors for load balancers<\/li>\n\n\n\n<li>Integrations of load balancers and other AWS services (for example, Global Accelerator, CloudFront, AWS WAF, Route 53, Amazon Elastic Kubernetes Service [Amazon EKS], AWS Certificate Manager [ACM])&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/resource-config-reference.html\" target=\"_blank\" rel=\"noreferrer noopener\">Supported Resource Types<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSCloudFormation\/latest\/UserGuide\/aws-resource-eks-cluster.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS::EKS::Cluster<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/pt_br\/AWSCloudFormation\/latest\/UserGuide\/aws-resource-globalaccelerator-accelerator.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS::GlobalAccelerator::Accelerator<\/a>)<\/li>\n\n\n\n<li>Configuration options for load balancers (for example, proxy protocol, cross-zone load balancing, session affinity [sticky sessions], routing algorithms)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/network\/load-balancer-target-groups.html\" target=\"_blank\" rel=\"noreferrer noopener\">Target groups for your Network Load Balancers<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/classic\/elb-sticky-sessions.html\" target=\"_blank\" rel=\"noreferrer noopener\">Configure sticky sessions for your Classic Load Balancer<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/application\/sticky-sessions.html\" target=\"_blank\" rel=\"noreferrer noopener\">Sticky sessions for your Application Load Balancer<\/a>)<\/li>\n\n\n\n<li>Configuration options for load balancer target groups (for example, TCP, GENEVE, IP compared with instance)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/APIReference\/API_CreateTargetGroup.html\" target=\"_blank\" rel=\"noreferrer noopener\">CreateTargetGroup<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/network\/load-balancer-target-groups.html\" target=\"_blank\" rel=\"noreferrer noopener\">Target groups for your Network Load Balancers<\/a>)<\/li>\n\n\n\n<li>AWS Load Balancer Controller for Kubernetes clusters&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/eks\/latest\/userguide\/aws-load-balancer-controller.html\" target=\"_blank\" rel=\"noreferrer noopener\">Installing the AWS Load Balancer Controller add-on<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/eks\/latest\/userguide\/alb-ingress.html\" target=\"_blank\" rel=\"noreferrer noopener\">Application load balancing on Amazon EKS<\/a>)<\/li>\n\n\n\n<li>Considerations for encryption and authentication with load balancers (for example, TLS termination, TLS passthrough)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/network\/create-tls-listener.html\" target=\"_blank\" rel=\"noreferrer noopener\">TLS listeners for your Network Load Balancer<\/a>,<a href=\"https:\/\/docs.aws.amazon.com\/elasticloadbalancing\/latest\/application\/create-https-listener.html\" target=\"_blank\" rel=\"noreferrer noopener\">&nbsp;Create an HTTPS listener for your Application Load Balancer<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 1.5: Design a routing strategy and connectivity architecture between on-premises<br>networks and the AWS Cloud.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Routing fundamentals (for example, dynamic compared with static, BGP)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/VPNRoutingTypes.html\" target=\"_blank\" rel=\"noreferrer noopener\">Site-to-Site VPN routing options<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/cgw-dynamic-routing-examples.html\" target=\"_blank\" rel=\"noreferrer noopener\">customer gateway device configurations for dynamic routing (BGP)<\/a>)<\/li>\n\n\n\n<li>Layer 1 and layer 2 concepts for physical interconnects (for example, VLAN, link aggregation group [LAG], optics, jumbo frames)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/lags.html\" target=\"_blank\" rel=\"noreferrer noopener\">Link aggregation groups<\/a>)<\/li>\n\n\n\n<li>Encapsulation and encryption technologies (for example, Generic Routing Encapsulation [GRE], IPsec)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/networking-and-content-delivery\/simplify-sd-wan-connectivity-with-aws-transit-gateway-connect\/\" target=\"_blank\" rel=\"noreferrer noopener\">Simplify SD-WAN connectivity with AWS Transit Gateway Connect<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/your-cgw.html\" target=\"_blank\" rel=\"noreferrer noopener\">Your customer gateway device<\/a>)<\/li>\n\n\n\n<li>Resource sharing across AWS accounts&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/ram\/latest\/userguide\/getting-started-sharing.html\" target=\"_blank\" rel=\"noreferrer noopener\">Sharing your AWS resources<\/a>)<\/li>\n\n\n\n<li>Overlay networks&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sap\/latest\/sap-hana\/sap-oip-overlay-ip-routing-using-aws-transit-gateway.html\" target=\"_blank\" rel=\"noreferrer noopener\">Overlay IP Routing using AWS Transit Gateway<\/a>)<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 2: Network Implementation (26%)<\/strong><\/h5>\n\n\n\n<p><strong>Task Statement 2.1: Implement routing and connectivity between on-premises networks and the AWS Cloud.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Routing protocols (for example, static, dynamic)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/VPNRoutingTypes.html\" target=\"_blank\" rel=\"noreferrer noopener\">Site-to-Site VPN routing options<\/a>)<\/li>\n\n\n\n<li>VPNs (for example, security, accelerated VPN)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpn\/latest\/s2svpn\/accelerated-vpn.html\" target=\"_blank\" rel=\"noreferrer noopener\">Accelerated Site-to-Site VPN connections<\/a>)<\/li>\n\n\n\n<li>Layer 1 and types of hardware to use (for example, Letter of Authorization [LOA] documents, colocation facilities, Direct Connect)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/getting_started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Classic<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/Colocation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Requesting cross connects at AWS Direct Connect locations<\/a>)<\/li>\n\n\n\n<li>Layer 2 and layer 3 (for example, VLANs, IP addressing, gateways, routing, switching)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/apn\/amazon-vpc-for-on-premises-network-engineers-part-one\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon VPC for On-Premises Network Engineers<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/route-table-options.html\" target=\"_blank\" rel=\"noreferrer noopener\">Example routing options<\/a>)<\/li>\n\n\n\n<li>Traffic management and SD-WAN (for example, Transit Gateway Connect)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/networking-and-content-delivery\/simplify-sd-wan-connectivity-with-aws-transit-gateway-connect\/\" target=\"_blank\" rel=\"noreferrer noopener\">Simplify SD-WAN connectivity with AWS Transit Gateway Connect<\/a>)<\/li>\n\n\n\n<li>DNS (for example, conditional forwarding, hosted zones, resolvers)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver.html\" target=\"_blank\" rel=\"noreferrer noopener\">Resolving DNS queries between VPCs and your network<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver-rules-managing.html\" target=\"_blank\" rel=\"noreferrer noopener\">Managing forwarding rules<\/a>)<\/li>\n\n\n\n<li>Security appliances (for example, firewalls)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/network-firewall\/latest\/developerguide\/what-is-aws-network-firewall.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Network Firewall<\/a>)<\/li>\n\n\n\n<li>Load balancing (for example, layer 4 compared with layer 7, reverse proxies, layer 3)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/elasticloadbalancing\/features\/\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic Load Balancing features<\/a>)<\/li>\n\n\n\n<li>Infrastructure automation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/running-containerized-microservices\/infrastructure-automation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Infrastructure Automation<\/a>)<\/li>\n\n\n\n<li>AWS Organizations and AWS Resource Access Manager (AWS RAM) (for example, multiaccount Transit Gateway, Direct Connect, Amazon VPC, Route 53)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/ram\/latest\/userguide\/shareable.html\" target=\"_blank\" rel=\"noreferrer noopener\">Shareable AWS resources<\/a>)<\/li>\n\n\n\n<li>Test connectivity (for example, Route Analyzer, Reachability Analyzer)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/reachability\/what-is-reachability-analyzer.html\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Reachability Analyzer<\/a>)<\/li>\n\n\n\n<li>Networking services of VPCs&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/what-is-amazon-vpc.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon VPC<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 2.2: Implement routing and connectivity across multiple AWS accounts, Regions, and VPCs to support different connectivity patterns.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Inter-VPC and multi-account connectivity (for example, VPC peering, Transit Gateway, VPN, third-party vendors, SD-WAN, multiprotocol label switching [MPLS])&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-vpc-connectivity-options\/amazon-vpc-to-amazon-vpc-connectivity-options.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon VPC-to-Amazon VPC connectivity options<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/networking-and-content-delivery\/simplify-sd-wan-connectivity-with-aws-transit-gateway-connect\/\" target=\"_blank\" rel=\"noreferrer noopener\">Simplify SD-WAN connectivity with AWS Transit Gateway Connect<\/a>)<\/li>\n\n\n\n<li>Private application connectivity (for example, PrivateLink)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/endpoint-services-overview.html\" target=\"_blank\" rel=\"noreferrer noopener\">Connect your VPC to services using AWS PrivateLink<\/a>)<\/li>\n\n\n\n<li>Methods of expanding AWS networking connectivity (for example, Organizations, AWS RAM)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/organizations\/latest\/userguide\/services-that-can-integrate-ram.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Resource Access Manager and AWS Organizations<\/a>)<\/li>\n\n\n\n<li>Host and service name resolution for applications and clients (for example, DNS)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver.html\" target=\"_blank\" rel=\"noreferrer noopener\">Resolving DNS queries between VPCs and your network<\/a>)<\/li>\n\n\n\n<li>Infrastructure automation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/running-containerized-microservices\/infrastructure-automation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Infrastructure Automation<\/a>)<\/li>\n\n\n\n<li>Authentication and authorization (for example, SAML, Active Directory)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/id_roles_providers_saml.html\" target=\"_blank\" rel=\"noreferrer noopener\">About SAML 2.0-based federation<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/IAM\/latest\/UserGuide\/id_roles_providers_saml_3rd-party.html\" target=\"_blank\" rel=\"noreferrer noopener\">Integrating third-party SAML solution providers with AWS<\/a>)<\/li>\n\n\n\n<li>Security (for example, security groups, network ACLs, AWS Network Firewall)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-network-acls.html\" target=\"_blank\" rel=\"noreferrer noopener\">Control traffic to subnets using Network ACLs<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/VPC_SecurityGroups.html\" target=\"_blank\" rel=\"noreferrer noopener\">Control traffic to resources using security groups<\/a>)<\/li>\n\n\n\n<li>Test connectivity (for example, Route Analyzer, Reachability Analyzer, tooling)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/reachability\/what-is-reachability-analyzer.html\" target=\"_blank\" rel=\"noreferrer noopener\">VPC Reachability Analyzer<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 2.3: Implement complex hybrid and multi-account DNS architectures.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>When to use private hosted zones and public hosted zones&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/hosted-zones-private.html\" target=\"_blank\" rel=\"noreferrer noopener\">Working with private hosted zones<\/a>)<\/li>\n\n\n\n<li>Methods to alter traffic management (for example, based on latency, geography, weighting)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/routing-policy.html\" target=\"_blank\" rel=\"noreferrer noopener\">Choosing a routing policy<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/TutorialLBRMultipleEC2InRegion.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using latency and weighted records in Amazon Route&nbsp;53<\/a>)<\/li>\n\n\n\n<li>DNS delegation and forwarding (for example, conditional forwarding)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver-rules-managing.html\" target=\"_blank\" rel=\"noreferrer noopener\">Managing forwarding rules<\/a>)<\/li>\n\n\n\n<li>Different DNS record types (for example, A, AAAA, TXT, pointer records, alias records)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/ResourceRecordTypes.html\" target=\"_blank\" rel=\"noreferrer noopener\">Supported DNS record types<\/a>)<\/li>\n\n\n\n<li>DNSSEC<\/li>\n\n\n\n<li>How to share DNS services between accounts (for example, AWS RAM)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/ram\/latest\/userguide\/shareable.html\" target=\"_blank\" rel=\"noreferrer noopener\">Shareable AWS resources<\/a>)<\/li>\n\n\n\n<li>Requirements and implementation options for outbound and inbound endpoints&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/resolver-getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Getting started with Route 53 Resolver<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 2.4: Automate and configure network infrastructure.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Infrastructure as code (IaC) (for example, AWS Cloud Development Kit [AWS CDK], AWS CloudFormation, AWS CLI, AWS SDK, APIs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/cdk\/v2\/guide\/home.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS CDK<\/a>)<\/li>\n\n\n\n<li>Event-driven network automation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/compute\/getting-started-with-event-driven-architecture\/\" target=\"_blank\" rel=\"noreferrer noopener\">Getting Started with Event-Driven Architecture<\/a>)<\/li>\n\n\n\n<li>Common problems of using hardcoded instructions in IaC templates when provisioning cloud networking resources&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSCloudFormation\/latest\/UserGuide\/best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS CloudFormation best practices<\/a>)<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 3: Network Management and Operations (20%)<\/strong><\/h5>\n\n\n\n<p><strong>Task Statement 3.1: Maintain routing and connectivity on AWS and hybrid networks.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Industry-standard routing protocols that are used in AWS hybrid networks (for example, BGP over Direct Connect)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/routing-and-bgp.html\" target=\"_blank\" rel=\"noreferrer noopener\">Routing policies and BGP communities<\/a>)<\/li>\n\n\n\n<li>Connectivity methods for AWS and hybrid networks (for example, Direct Connect gateway, Transit Gateway, VIFs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/building-scalable-secure-multi-vpc-network-infrastructure\/direct-connect.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Direct Connect&nbsp;<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/direct-connect-transit-gateways.html\" target=\"_blank\" rel=\"noreferrer noopener\">Transit gateway associations<\/a>)<\/li>\n\n\n\n<li>How limits and quotas affect AWS networking services (for example, bandwidth limits, route limits)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgw\/transit-gateway-quotas.html\" target=\"_blank\" rel=\"noreferrer noopener\">Quotas for your transit gateways<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/amazon-vpc-limits.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon VPC quotas<\/a>)<\/li>\n\n\n\n<li>Available private and public access methods for custom services (for example, PrivateLink, VPC peering)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/vpc-peering.html\" target=\"_blank\" rel=\"noreferrer noopener\">Connect VPCs using VPC peering<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/endpoint-services-overview.html\" target=\"_blank\" rel=\"noreferrer noopener\">Connect your VPC to services using AWS PrivateLink<\/a>)<\/li>\n\n\n\n<li>Available inter-Regional and intra-Regional communication patterns&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/prescriptive-guidance\/latest\/patterns\/automate-the-setup-of-inter-region-peering-with-aws-transit-gateway.html\" target=\"_blank\" rel=\"noreferrer noopener\">Automate the setup of inter-Region peering with AWS Transit Gateway<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 3.2: Monitor and analyze network traffic to troubleshoot and optimize connectivity patterns.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Network performance metrics and reachability constraints (for example, routing, packet size)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/monitoring-network-performance-ena.html\" target=\"_blank\" rel=\"noreferrer noopener\">Monitor network performance for your EC2 instance<\/a>)<\/li>\n\n\n\n<li>Appropriate logs and metrics to assess network performance and reachability issues (for example, packet loss)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/premiumsupport\/knowledge-center\/troubleshoot-vpn-packet-loss\/\" target=\"_blank\" rel=\"noreferrer noopener\">troubleshoot packet loss on my VPN<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/premiumsupport\/knowledge-center\/network-issue-vpc-onprem-ig\/\" target=\"_blank\" rel=\"noreferrer noopener\">troubleshoot network performance issues<\/a>)<\/li>\n\n\n\n<li>Tools to collect and analyze logs and metrics (for example, CloudWatch, VPC Flow Logs, VPC Traffic Mirroring)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/mirroring\/what-is-traffic-mirroring.html\" target=\"_blank\" rel=\"noreferrer noopener\">Traffic Mirroring<\/a>)<\/li>\n\n\n\n<li>Tools to analyze routing patterns and issues (for example, Reachability Analyzer, Transit Gateway Network Manager)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgwnm\/route-analyzer.html\" target=\"_blank\" rel=\"noreferrer noopener\">Route Analyzer<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 3.3: Optimize AWS networks for performance, reliability, and cost-effectiveness.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Situations in which a VPC peer or a transit gateway are appropriate&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgw\/what-is-transit-gateway.html\" target=\"_blank\" rel=\"noreferrer noopener\">transit gateway<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/tgw\/tgw-peering.html\" target=\"_blank\" rel=\"noreferrer noopener\">Transit gateway peering attachments<\/a>)<\/li>\n\n\n\n<li>Different methods to reduce bandwidth utilization (for example, unicast compared with multicast, CloudFront)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/usage-charts.html\" target=\"_blank\" rel=\"noreferrer noopener\">CloudFront usage reports<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/IntroductionUseCases.html\" target=\"_blank\" rel=\"noreferrer noopener\">CloudFront use cases<\/a>)<\/li>\n\n\n\n<li>Cost-effective connectivity options for data transfer between a VPC and on-premises environments&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/hybrid-networking-lens\/cost-optimization-pillar.html\" target=\"_blank\" rel=\"noreferrer noopener\">Cost optimization pillar<\/a>)<\/li>\n\n\n\n<li>Different types of network interfaces on AWS&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/using-eni.html\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic network interfaces<\/a>)<\/li>\n\n\n\n<li>High-availability features in Route 53 (for example, DNS load balancing using health checks with latency and weighted record sets)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/dns-failover.html\" target=\"_blank\" rel=\"noreferrer noopener\">Creating Amazon Route&nbsp;53 health checks and configuring DNS failover<\/a>)<\/li>\n\n\n\n<li>Availability of options from Route 53 that provide reliability&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/route53\/faqs\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Route 53 FAQs<\/a>)<\/li>\n\n\n\n<li>Load balancing and traffic distribution patterns&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/elasticloadbalancing\/features\/\" target=\"_blank\" rel=\"noreferrer noopener\">Elastic Load Balancing features<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/autoscaling\/ec2\/userguide\/autoscaling-load-balancer.html\" target=\"_blank\" rel=\"noreferrer noopener\">Use Elastic Load Balancing to distribute traffic<\/a>)<\/li>\n\n\n\n<li>VPC subnet optimization&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/configure-subnets.html\" target=\"_blank\" rel=\"noreferrer noopener\">Subnets for your VPC<\/a>)<\/li>\n\n\n\n<li>Frame size optimization for bandwidth across different connection types&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/ec2\/instance-types\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon EC2 Instance Types<\/a>)<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 4: Network Security, Compliance, and Governance (24%)<\/strong><\/h5>\n\n\n\n<p><strong>Task Statement 4.1: Implement and maintain network features to meet security and compliance needs and requirements.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Different threat models based on application architecture<\/li>\n\n\n\n<li>Common security threats&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-overview\/security-and-compliance.html\" target=\"_blank\" rel=\"noreferrer noopener\">Security and compliance<\/a>)<\/li>\n\n\n\n<li>Mechanisms to secure different application flows<\/li>\n\n\n\n<li>AWS network architecture that meets security and compliance requirements<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 4.2: Validate and audit security by using network monitoring and logging services.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Network monitoring and logging services that are available in AWS (for example, CloudWatch, AWS CloudTrail, VPC Traffic Mirroring, VPC Flow Logs, Transit Gateway Network Manager)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/vpc\/latest\/userguide\/flow-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging IP traffic using VPC Flow Logs<\/a>)<\/li>\n\n\n\n<li>Alert mechanisms (for example, CloudWatch alarms)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/monitoring\/AlarmThatSendsEmail.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using Amazon CloudWatch alarms<\/a>)<\/li>\n\n\n\n<li>Log creation in different AWS services (for example, VPC flow logs, load balancer access logs, CloudFront access logs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/AccessLogs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Configuring and using standard logs (access logs)<\/a>)<\/li>\n\n\n\n<li>Log delivery mechanisms (for example, Amazon Kinesis, Route 53, CloudWatch)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/logging-monitoring.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging and monitoring in Amazon Route&nbsp;53<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/firehose\/latest\/dev\/writing-with-cloudwatch-logs.html\" target=\"_blank\" rel=\"noreferrer noopener\">Writing to Kinesis Data Firehose Using CloudWatch Logs<\/a>)<\/li>\n\n\n\n<li>Mechanisms to audit network security configurations (for example, security groups, AWS Firewall Manager, AWS Trusted Advisor)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/waf\/latest\/developerguide\/security-group-policies.html\" target=\"_blank\" rel=\"noreferrer noopener\">Security group policies<\/a>)<\/li>\n<\/ul>\n\n\n\n<p><strong>Task Statement 4.3: Implement and maintain the confidentiality of data and communications of the network.<\/strong><\/p>\n\n\n\n<p>Knowledge of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Network encryption options that are available on AWS&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonS3\/latest\/userguide\/UsingEncryption.html\" target=\"_blank\" rel=\"noreferrer noopener\">Protecting data using encryption<\/a>)<\/li>\n\n\n\n<li>VPN connectivity over Direct Connect&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-vpc-connectivity-options\/aws-direct-connect-vpn.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Direct Connect + VPN<\/a>)<\/li>\n\n\n\n<li>Encryption methods for data in transit (for example, IPsec)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/logical-separation\/encrypting-data-at-rest-and--in-transit.html\" target=\"_blank\" rel=\"noreferrer noopener\">Encrypting Data-at-Rest and -in-Transit<\/a>)<\/li>\n\n\n\n<li>Network encryption under the AWS shared responsibility model Network encryption under the AWS&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/aws-risk-and-compliance\/shared-responsibility-model.html\" target=\"_blank\" rel=\"noreferrer noopener\">shared responsibility model<\/a>)<\/li>\n\n\n\n<li>Security methods for DNS communications (for example, DNSSEC)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/Route53\/latest\/DeveloperGuide\/domain-configure-dnssec.html\" target=\"_blank\" rel=\"noreferrer noopener\">Configuring DNSSEC for a domain<\/a>)<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-black-background-color has-text-color has-background has-link-color wp-elements-848b373ab9d91cc008b6fd490350a9cf\"><strong>AWS Certified Machine Learning \u2013 Specialty<\/strong><\/h3>\n\n\n\n<p>Designed for ML practitioners working on AWS. It covers data engineering, model training, deployment, tuning, and monitoring using services like SageMaker, Glue, and S3. Ideal for machine learning engineers, data scientists, and AI-focused developers.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Who should take the exam?<\/strong><\/h4>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Machine Learning Engineers<\/strong>\n<ul class=\"wp-block-list\">\n<li>Building, training, tuning, and deploying ML models on AWS.<\/li>\n\n\n\n<li>Experience with SageMaker, model monitoring, and MLOps.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Data Scientists<\/strong>\n<ul class=\"wp-block-list\">\n<li>Using AWS tools for data prep, experimentation, and model building.<\/li>\n\n\n\n<li>Applying ML techniques like classification, regression, clustering, and deep learning.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Data Engineers \/ Big Data Specialists<\/strong>\n<ul class=\"wp-block-list\">\n<li>Creating pipelines and managing data lakes or real-time data flows.<\/li>\n\n\n\n<li>Familiar with AWS Glue, Redshift, Kinesis, or EMR.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>AI\/ML Consultants<\/strong>\n<ul class=\"wp-block-list\">\n<li>Advising clients on AWS ML solutions or implementing end-to-end ML systems.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Developers \/ Software Engineers<\/strong>\n<ul class=\"wp-block-list\">\n<li>With hands-on experience integrating ML models into applications using AWS.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Recommended Experience<\/strong><\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li>1\u20132+ years of hands-on ML experience, preferably in production environments<\/li>\n\n\n\n<li>Deep understanding of ML algorithms and best practices<\/li>\n\n\n\n<li>Familiarity with AWS services like SageMaker, S3, IAM, CloudWatch, Lambda<\/li>\n\n\n\n<li>Comfort with data preprocessing, model tuning, and evaluation metrics<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>AWS Certified Machine Learning \u2013 Specialty<\/strong> <strong>Course Outline<\/strong><\/h4>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 1: Data Engineering (20%)<\/strong><\/h5>\n\n\n\n<p>1.1 Create data repositories for ML.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Identify data sources (e.g., content and location, primary sources such as user data)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/quicksight\/latest\/user\/supported-data-sources.html\" target=\"_blank\" rel=\"noreferrer noopener\">Supported data sources<\/a>)<\/li>\n\n\n\n<li>Determine storage mediums (for example, databases, Amazon S3, Amazon Elastic File System [Amazon EFS], Amazon Elastic Block Store [Amazon EBS]).&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/using-amazon-s3-with-amazon-ml.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using Amazon S3 with Amazon ML<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/create-datasource-from-redshift-procedure.html\" target=\"_blank\" rel=\"noreferrer noopener\">Creating a Datasource with Amazon Redshift Data<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/using-amazon-rds-with-amazon-ml.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using Data from an Amazon RDS Database<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/host-instance-storage.html\" target=\"_blank\" rel=\"noreferrer noopener\">Host instance storage volumes<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/apn\/amazon-machine-learning-and-amazon-elastic-file-system-amazon-efs-a-perspective-for-apn-partners\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Machine Learning and Amazon Elastic File System<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>1.2 Identify and implement a data ingestion solution.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Identify data job styles and job types (for example, batch load, streaming).<\/li>\n\n\n\n<li>Orchestrate data ingestion pipelines (batch-based ML workloads and streaming-based ML workloads).\n<ul class=\"wp-block-list\">\n<li>Amazon Kinesis&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/kinesis\/data-streams\/getting-started\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Kinesis Data Streams<\/a>)<\/li>\n\n\n\n<li>Amazon Data Firehose<\/li>\n\n\n\n<li>Amazon EMR&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/datapipeline\/latest\/DeveloperGuide\/dp-launch-emr-jobflow.html\" target=\"_blank\" rel=\"noreferrer noopener\">Process Data Using Amazon EMR with Hadoop Streaming<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/optimizing-downstream-data-processing-with-amazon-kinesis-data-firehose-and-amazon-emr-running-apache-spark\/\" target=\"_blank\" rel=\"noreferrer noopener\">Optimize downstream data processing<\/a>)<\/li>\n\n\n\n<li>Amazon Glue&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/simplify-data-pipelines-with-aws-glue-automatic-code-generation-and-workflows\/\" target=\"_blank\" rel=\"noreferrer noopener\">Simplify data pipelines<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/glue\/?whats-new-cards.sort-by=item.additionalFields.postDateTime&amp;whats-new-cards.sort-order=desc\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Glue<\/a>)<\/li>\n\n\n\n<li>Amazon Managed Service for Apache Flink<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Schedule Job&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/batch\/latest\/userguide\/job_scheduling.html\" target=\"_blank\" rel=\"noreferrer noopener\">Job scheduling<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/glue\/latest\/dg\/monitor-data-warehouse-schedule.html\" target=\"_blank\" rel=\"noreferrer noopener\">Time-based schedules for jobs and crawlers<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>1.3 Identify and implement a data transformation solution.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Transforming data transit (ETL: Glue, Amazon EMR, AWS Batch)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/database\/how-to-extract-transform-and-load-data-for-analytic-processing-using-aws-glue-part-2\/\" target=\"_blank\" rel=\"noreferrer noopener\">extract, transform, and load data for analytic processing using AWS Glue<\/a>)<\/li>\n\n\n\n<li>Handle ML-specific data by using MapReduce (for example, Apache Hadoop, Apache Spark, Apache Hive).&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/large-scale-machine-learning-with-spark-on-amazon-emr\/\" target=\"_blank\" rel=\"noreferrer noopener\">Large-Scale Machine Learning with Spark on Amazon EMR<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/emr\/features\/hive\/\" target=\"_blank\" rel=\"noreferrer noopener\">Apache Hive on Amazon EMR<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/emr\/features\/spark\/\" target=\"_blank\" rel=\"noreferrer noopener\">Apache Spark on Amazon EMR<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/apache-spark.html\" target=\"_blank\" rel=\"noreferrer noopener\">Use Apache Spark with Amazon SageMaker<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/perform-interactive-data-engineering-and-data-science-workflows-from-amazon-sagemaker-studio-notebooks\/\" target=\"_blank\" rel=\"noreferrer noopener\">Perform interactive data engineering and data science workflows<\/a>)<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 2: Exploratory Data Analysis (24%)<\/strong><\/h5>\n\n\n\n<p>2.1 Sanitize and prepare data for modeling.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Identify and handle missing data, corrupt data, stop words, etc.&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/managing-missing-values-in-your-target-and-related-datasets-with-automated-imputation-support-in-amazon-forecast\/\" target=\"_blank\" rel=\"noreferrer noopener\">Managing missing values in your target and related datasets<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/amazon-sagemaker-deepar-now-supports-missing-values-categorical-and-time-series-features-and-generalized-frequencies\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon SageMaker DeepAR now supports missing values,<\/a><a href=\"https:\/\/docs.aws.amazon.com\/cloudsearch\/latest\/developerguide\/configuring-analysis-schemes.html\" target=\"_blank\" rel=\"noreferrer noopener\">&nbsp;Configuring Text Analysis Schemes<\/a>)<\/li>\n\n\n\n<li>Formatting, normalizing, augmenting, and scaling data&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/understanding-the-data-format-for-amazon-ml.html\" target=\"_blank\" rel=\"noreferrer noopener\">Understanding the Data Format for Amazon ML<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/cdf-training.html\" target=\"_blank\" rel=\"noreferrer noopener\">Common Data Formats for Training<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/data-transformations-reference.html\" target=\"_blank\" rel=\"noreferrer noopener\">Data Transformations Reference<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/about-aws\/whats-new\/2020\/11\/introducing-aws-glue-databrew-visual-data-preparation-tool-to-clean-and-normalize-data-up-to-80-percent-faster\/\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Glue DataBrew<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/easily-train-models-using-datasets-labeled-by-amazon-sagemaker-ground-truth\/\" target=\"_blank\" rel=\"noreferrer noopener\">Easily train models using datasets<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/making-machine-learning-predictions-in-amazon-quicksight-and-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Visualizing Amazon SageMaker machine learning predictions<\/a>)<\/li>\n\n\n\n<li>Determine whether there is sufficient labeled data.&nbsp;<strong>(AWS Documentation:<\/strong><a href=\"https:\/\/aws.amazon.com\/sagemaker\/data-labeling\/what-is-data-labeling\/\" target=\"_blank\" rel=\"noreferrer noopener\">data labeling for machine learning<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSMechTurk\/latest\/AWSMechanicalTurkGettingStartedGuide\/SvcIntro.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Mechanical Turk<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/use-amazon-mechanical-turk-with-amazon-sagemaker-for-supervised-learning\/\" target=\"_blank\" rel=\"noreferrer noopener\">Use Amazon Mechanical Turk with Amazon SageMaker<\/a>)\n<ul class=\"wp-block-list\">\n<li>Identify mitigation strategies.<\/li>\n\n\n\n<li>Use data labelling tools (for example, Amazon Mechanical Turk).<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p>2.2 Perform feature engineering.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Identify and extract features from data sets, including from data sources such as text, speech, image, public datasets, etc.&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/feature-processing.html\" target=\"_blank\" rel=\"noreferrer noopener\">Feature Processing<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/machine-learning-lens\/feature-engineering.html\" target=\"_blank\" rel=\"noreferrer noopener\">Feature engineering<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/textract\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Textract<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/textract\/features\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Textract features<\/a>)<\/li>\n\n\n\n<li>Analyze\/evaluate feature engineering concepts (binning, tokenization, outliers, synthetic features, 1 hot encoding, reducing dimensionality of data)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/data-transformations-reference.html\" target=\"_blank\" rel=\"noreferrer noopener\">Data Transformations Reference<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/compute\/building-a-serverless-tokenization-solution-to-mask-sensitive-data\/\" target=\"_blank\" rel=\"noreferrer noopener\">Building a serverless tokenization solution to mask sensitive data<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/quicksight\/latest\/user\/anomaly-detection-function.html\" target=\"_blank\" rel=\"noreferrer noopener\">ML-powered anomaly detection for outliers<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/databrew\/latest\/dg\/recipe-actions.ONE_HOT_ENCODING.html\" target=\"_blank\" rel=\"noreferrer noopener\">ONE_HOT_ENCODING<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/running-principal-component-analysis-in-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Running Principal Component Analysis<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/perform-a-large-scale-principal-component-analysis-faster-using-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Perform a large-scale principal component analysis<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>2.3 Analyze and visualize data for ML.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Create Graphs (scatter plot, time series, histogram, box plot)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/quicksight\/latest\/user\/scatter-plot.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using scatter plots<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AmazonCloudWatch\/latest\/logs\/CWL_AnalyzeLogData_VisualizationQuery.html\" target=\"_blank\" rel=\"noreferrer noopener\">Run a query that produces a time series visualization<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/quicksight\/latest\/user\/histogram-charts.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using histograms<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/quicksight\/latest\/user\/box-plots.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using box plots<\/a>)<\/li>\n\n\n\n<li>Interpreting descriptive statistics (correlation, summary statistics, p value)<\/li>\n\n\n\n<li>Perform cluster analysis (for example, hierarchical, diagnosis, elbow plot, cluster size).<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 3: Modeling (36%)<\/strong><\/h5>\n\n\n\n<p>3.1 Frame business problems as ML problems.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Determine when to use and when not to use ML&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/when-to-use-machine-learning.html\" target=\"_blank\" rel=\"noreferrer noopener\">When to Use Machine Learning<\/a>)<\/li>\n\n\n\n<li>Know the difference between supervised and unsupervised learning<\/li>\n\n\n\n<li>Select from among classification, regression, forecasting, clustering, recommendation, and foundation models.&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/k-means-clustering-with-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">K-means clustering with Amazon SageMaker<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/building-a-customized-recommender-system-in-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Building a customized recommender system in Amazon SageMaker<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>3.2 Select the appropriate model(s) for a given ML problem.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Xgboost, logistic regression, K-means, linear regression, decision trees, random forests, RNN, CNN, Ensemble, Transfer learning&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/xgboost.html\" target=\"_blank\" rel=\"noreferrer noopener\">XGBoost Algorithm<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/k-means-clustering-with-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">K-means clustering with Amazon SageMaker<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/forecasting-time-series-with-dynamic-deep-learning-on-aws\/\" target=\"_blank\" rel=\"noreferrer noopener\">Forecasting financial time series<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/amazon-forecast-can-now-use-convolutional-neural-networks-cnns-to-train-forecasting-models-up-to-2x-faster-with-up-to-30-higher-accuracy\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Forecast can now use Convolutional Neural Networks<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/detecting-hidden-but-non-trivial-problems-in-transfer-learning-models-using-amazon-sagemaker-debugger\/\" target=\"_blank\" rel=\"noreferrer noopener\">Detecting hidden but non-trivial problems in transfer learning models<\/a>)<\/li>\n\n\n\n<li>Express intuition behind models<\/li>\n<\/ul>\n\n\n\n<p>3.3 Train ML models.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Split data between training and validation (for example, cross validation).&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/ex1-train-model.html\" target=\"_blank\" rel=\"noreferrer noopener\">Train a Model<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/incremental-training.html\" target=\"_blank\" rel=\"noreferrer noopener\">Incremental Training<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/model-managed-spot-training.html\" target=\"_blank\" rel=\"noreferrer noopener\">Managed Spot Training<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/how-it-works-model-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Validate a Machine Learning Model<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/cross-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Cross-Validation<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/autopilot-model-support-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Model support, metrics, and validation<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/splitting-types.html\" target=\"_blank\" rel=\"noreferrer noopener\">Splitting Your Data<\/a>)<\/li>\n\n\n\n<li>Understand optimization techniques for ML training (for example, gradient descent, loss functions, convergence).<\/li>\n\n\n\n<li>Choose appropriate compute resources (for example GPU or CPU, distributed or non-distributed).\n<ul class=\"wp-block-list\">\n<li>Choose appropriate compute platforms (Spark or non-Spark).<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Update and retraining Models&nbsp;<strong>(AWS Documentation:<\/strong><a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/retraining-models-on-new-data.html\" target=\"_blank\" rel=\"noreferrer noopener\">Retraining Models on New Data<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/automating-model-retraining-and-deployment-using-the-aws-step-functions-data-science-sdk-for-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Automating model retraining and deployment<\/a>)\n<ul class=\"wp-block-list\">\n<li>Batch vs. real-time\/online<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p>3.4 Perform hyperparameter optimization.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Perform Regularization&nbsp;<strong>(AWS Documentation:<\/strong><a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/training-parameters1.html\" target=\"_blank\" rel=\"noreferrer noopener\">Training Parameters<\/a>)\n<ul class=\"wp-block-list\">\n<li>Drop out<\/li>\n\n\n\n<li>L1\/L2<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Perform Cross validation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/cross-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Cross-Validation<\/a>)<\/li>\n\n\n\n<li>Model initialization<\/li>\n\n\n\n<li>Neural network architecture (layers\/nodes), learning rate, activation functions<\/li>\n\n\n\n<li>Understand tree-based models (number of trees, number of levels).<\/li>\n\n\n\n<li>Understand linear models (learning rate).<\/li>\n<\/ul>\n\n\n\n<p>3.5 Evaluate ML models.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Avoid overfitting and underfitting\n<ul class=\"wp-block-list\">\n<li>Detect and handle bias and variance&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/model-fit-underfitting-vs-overfitting.html\" target=\"_blank\" rel=\"noreferrer noopener\">Underfitting vs. Overfitting<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/aws\/new-amazon-sagemaker-clarify-detects-bias-and-increases-the-transparency-of-machine-learning-models\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon SageMaker Clarify Detects Bias and Increases the Transparency<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/sagemaker\/clarify\/?sagemaker-data-wrangler-whats-new.sort-by=item.additionalFields.postDateTime&amp;sagemaker-data-wrangler-whats-new.sort-order=desc\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon SageMaker Clarify<\/a>)<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Evaluate metrics (for example, area under curve [AUC]-receiver operating characteristics [ROC], accuracy, precision, recall, Root Mean Square Error [RMSE], F1 score).<\/li>\n\n\n\n<li>Interpret confusion matrix&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/comprehend\/latest\/dg\/cer-doc-class.html\" target=\"_blank\" rel=\"noreferrer noopener\">Custom classifier metrics<\/a>)<\/li>\n\n\n\n<li>Offline and online model evaluation (A\/B testing)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/how-it-works-model-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Validate a Machine Learning Model<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/machine-learning-lens\/machine-learning-lens.html\" target=\"_blank\" rel=\"noreferrer noopener\">Machine Learning Lens<\/a>)<\/li>\n\n\n\n<li>Compare models using metrics (time to train a model, quality of model, engineering costs)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/easily-monitor-and-visualize-metrics-while-training-models-on-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Easily monitor and visualize metrics while training models<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/model-monitor-model-quality-metrics.html\" target=\"_blank\" rel=\"noreferrer noopener\">Model Quality Metrics<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/model-monitor-model-quality.html\" target=\"_blank\" rel=\"noreferrer noopener\">Monitor model quality<\/a>)<\/li>\n\n\n\n<li>Cross validation&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/cross-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Cross-Validation<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/autopilot-model-support-validation.html\" target=\"_blank\" rel=\"noreferrer noopener\">Model support, metrics, and validation<\/a>)<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><strong>Domain 4: Machine Learning Implementation and Operations (20%)<\/strong><\/h5>\n\n\n\n<p>4.1 Build ML solutions for performance, availability, scalability, resiliency, and fault tolerance.&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/step-4-review-model-and-set-cutoff.html\" target=\"_blank\" rel=\"noreferrer noopener\">Review the ML Model\u2019s Predictive Performance<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">Best practices<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/disaster-recovery-resiliency.html\" target=\"_blank\" rel=\"noreferrer noopener\">Resilience in Amazon SageMaker<\/a>)<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Log and monitor AWS environments&nbsp;<strong>(AWS Documentation:<\/strong><a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/sagemaker-incident-response.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging and Monitoring<\/a>)\n<ul class=\"wp-block-list\">\n<li>AWS CloudTrail and AWS CloudWatch&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/logging-using-cloudtrail.html\" target=\"_blank\" rel=\"noreferrer noopener\">Logging Amazon ML API Calls with AWS CloudTrail<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/logging-using-cloudtrail.html\" target=\"_blank\" rel=\"noreferrer noopener\">Log Amazon SageMaker API Calls<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/cw-doc.html\" target=\"_blank\" rel=\"noreferrer noopener\">Monitoring Amazon ML<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/monitoring-cloudwatch.html\" target=\"_blank\" rel=\"noreferrer noopener\">Monitor Amazon SageMaker<\/a>)<\/li>\n\n\n\n<li>Build error monitoring solutions&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/whitepapers\/latest\/build-secure-enterprise-ml-platform\/ml-platform-monitoring.html\" target=\"_blank\" rel=\"noreferrer noopener\">ML Platform Monitoring<\/a>)<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Deploy to multiple AWS Regions and multiple Availability Zones.&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/regions-and-endpoints.html\" target=\"_blank\" rel=\"noreferrer noopener\">Regions and Endpoints<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/best-practices.html\" target=\"_blank\" rel=\"noreferrer noopener\">Best practices<\/a>)<\/li>\n\n\n\n<li>AMI and golden image&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/dlami\/latest\/devguide\/what-is-dlami.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Deep Learning AMI<\/a>)<\/li>\n\n\n\n<li>Docker containers&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/opensource\/why-use-docker-containers-for-machine-learning-development\/\" target=\"_blank\" rel=\"noreferrer noopener\">Why use Docker containers for machine learning development<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/docker-containers.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using Docker containers with SageMaker<\/a>)<\/li>\n\n\n\n<li>Deploy Auto Scaling groups&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/endpoint-auto-scaling.html\" target=\"_blank\" rel=\"noreferrer noopener\">Automatically Scale Amazon SageMaker Models<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/configuring-autoscaling-inference-endpoints-in-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Configuring autoscaling inference endpoints<\/a>)<\/li>\n\n\n\n<li>Rightsizing resources, for example:\n<ul class=\"wp-block-list\">\n<li>Instances&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/ensure-efficient-compute-resources-on-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Ensure efficient compute resources on Amazon SageMaker<\/a>)<\/li>\n\n\n\n<li>Provisioned IOPS&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/optimizing-i-o-for-gpu-performance-tuning-of-deep-learning-training-in-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Optimizing I\/O for GPU performance tuning of deep learning<\/a>)<\/li>\n\n\n\n<li>Volumes&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/customize-your-notebook-volume-size-up-to-16-tb-with-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Customize your notebook volume size, up to 16 TB<\/a>)<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Load balancing&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/managing-your-machine-learning-lifecycle-with-mlflow-and-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Managing your machine learning lifecycle<\/a>)<\/li>\n\n\n\n<li>AWS best practices&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/machine-learning-best-practices-in-financial-services\/\" target=\"_blank\" rel=\"noreferrer noopener\">Machine learning best practices in financial services<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>4.2 Recommend and implement the appropriate ML services and features for a given problem.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>ML on AWS (application services)\n<ul class=\"wp-block-list\">\n<li>Amazon Poly&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/polly\/?nc=sn&amp;loc=1\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Polly<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/build-a-unique-brand-voice-with-amazon-polly\/\" target=\"_blank\" rel=\"noreferrer noopener\">Build a unique Brand Voice with Amazon Polly<\/a>)<\/li>\n\n\n\n<li>Amazon Lex&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/lex\/latest\/dg\/what-is.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Lex<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/build-more-effective-conversations-on-amazon-lex-with-confidence-scores-and-increased-accuracy\/\" target=\"_blank\" rel=\"noreferrer noopener\">Build more effective conversations on Amazon Lex<\/a>)<\/li>\n\n\n\n<li>Amazon Transcribe&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/transcribe\/?nc=sn&amp;loc=1\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Transcribe<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/transcribe-speech-to-text-in-real-time-using-amazon-transcribe-with-websocket\/\" target=\"_blank\" rel=\"noreferrer noopener\">Transcribe speech to text in real time<\/a>)<\/li>\n\n\n\n<li>Amazon Q<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>Understand AWS service quotas&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/general\/latest\/gr\/sagemaker.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon SageMaker endpoints and quotas<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/general\/latest\/gr\/machinelearning.html\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon Machine Learning endpoints and quotas<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/system-limits.html\" target=\"_blank\" rel=\"noreferrer noopener\">System Limits<\/a>)<\/li>\n\n\n\n<li>Determine when to build custom models and when to use Amazon SageMaker built-in algorithms.<\/li>\n\n\n\n<li>Understand AWS infrastructure (for example, instance types) and cost considerations.\n<ul class=\"wp-block-list\">\n<li>Using spot instances to train deep learning models using AWS Batch&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/train-deep-learning-models-on-gpus-using-amazon-ec2-spot-instances\/\" target=\"_blank\" rel=\"noreferrer noopener\">Train Deep Learning Models on GPUs<\/a>)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p>4.3 Apply basic AWS security practices to ML solutions.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AWS Identity and Access Management (IAM)&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/controlling-access-to-amazon-ml-resources-by-using-iam.html\" target=\"_blank\" rel=\"noreferrer noopener\">Controlling Access to Amazon ML Resources<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/deep-learning-containers\/latest\/devguide\/security-iam.html\" target=\"_blank\" rel=\"noreferrer noopener\">Identity and Access Management in AWS Deep Learning Containers<\/a>)<\/li>\n\n\n\n<li>S3 bucket policies&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/using-amazon-s3-with-amazon-ml.html\" target=\"_blank\" rel=\"noreferrer noopener\">Using Amazon S3 with Amazon ML<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/machine-learning\/latest\/dg\/granting-amazon-ml-permissions-to-read-your-data-from-amazon-s3.html\" target=\"_blank\" rel=\"noreferrer noopener\">Granting Amazon ML Permissions to Read Your Data from Amazon S3<\/a>)<\/li>\n\n\n\n<li>Security groups&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/part-1-secure-multi-account-model-deployment-with-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Secure multi-account model deployment with Amazon SageMaker<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/AWSEC2\/latest\/UserGuide\/efa-start-nccl-dlami.html\" target=\"_blank\" rel=\"noreferrer noopener\">Use an AWS Deep Learning AMI<\/a>)<\/li>\n\n\n\n<li>VPC&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/securing-amazon-sagemaker-studio-connectivity-using-a-private-vpc\/\" target=\"_blank\" rel=\"noreferrer noopener\">Securing Amazon SageMaker Studio connectivity<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/direct-access-to-amazon-sagemaker-notebooks-from-amazon-vpc-by-using-an-aws-privatelink-endpoint\/\" target=\"_blank\" rel=\"noreferrer noopener\">Direct access to&nbsp;Amazon SageMaker notebooks<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/building-secure-machine-learning-environments-with-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Building secure machine learning environments<\/a>)<\/li>\n\n\n\n<li>Encryption and anonymization&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/encryption-at-rest.html\" target=\"_blank\" rel=\"noreferrer noopener\">Protect Data at Rest Using Encryption<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/encryption-in-transit.html\" target=\"_blank\" rel=\"noreferrer noopener\">Protecting Data in Transit with Encryption<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/anonymize-and-manage-data-in-your-data-lake-with-amazon-athena-and-aws-lake-formation\/\" target=\"_blank\" rel=\"noreferrer noopener\">Anonymize and manage data in your data lake<\/a>)<\/li>\n<\/ul>\n\n\n\n<p>4.4 Deploy and operationalize ML solutions.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Exposing endpoints and interacting with them&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/creating-a-machine-learning-powered-rest-api-with-amazon-api-gateway-mapping-templates-and-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Creating a machine learning-powered REST API<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/call-an-amazon-sagemaker-model-endpoint-using-amazon-api-gateway-and-aws-lambda\/\" target=\"_blank\" rel=\"noreferrer noopener\">Call an Amazon SageMaker model endpoint<\/a>)<\/li>\n\n\n\n<li>Understand ML models.<\/li>\n\n\n\n<li>A\/B testing&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/a-b-testing-ml-models-in-production-using-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">A\/B Testing ML models in production<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/dynamic-a-b-testing-for-machine-learning-models-with-amazon-sagemaker-mlops-projects\/\" target=\"_blank\" rel=\"noreferrer noopener\">Dynamic A\/B testing for machine learning models<\/a>)<\/li>\n\n\n\n<li>Retrain pipelines&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/automating-model-retraining-and-deployment-using-the-aws-step-functions-data-science-sdk-for-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Automating model retraining and deployment<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/wellarchitected\/latest\/machine-learning-lens\/machine-learning-lens.html\" target=\"_blank\" rel=\"noreferrer noopener\">Machine Learning Lens<\/a>)<\/li>\n\n\n\n<li>Debug and troubleshoot ML models&nbsp;<strong>(AWS Documentation:<\/strong><a href=\"https:\/\/aws.amazon.com\/blogs\/aws\/amazon-sagemaker-debugger-debug-your-machine-learning-models\/\" target=\"_blank\" rel=\"noreferrer noopener\">Debug Your Machine Learning Models<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/analyzing-open-source-ml-pipeline-models-in-real-time-using-amazon-sagemaker-debugger\/\" target=\"_blank\" rel=\"noreferrer noopener\">Analyzing open-source ML pipeline models in real time<\/a>,&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/deploy-model-troubleshoot.html\" target=\"_blank\" rel=\"noreferrer noopener\">Troubleshoot Amazon SageMaker model deployments<\/a>)\n<ul class=\"wp-block-list\">\n<li>Detect and mitigate drop in performance&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/identify-bottlenecks-improve-resource-utilization-and-reduce-ml-training-costs-with-the-new-profiling-feature-in-amazon-sagemaker-debugger\/\" target=\"_blank\" rel=\"noreferrer noopener\">Identify bottlenecks, improve resource utilization, and reduce ML training costs<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/optimizing-i-o-for-gpu-performance-tuning-of-deep-learning-training-in-amazon-sagemaker\/\" target=\"_blank\" rel=\"noreferrer noopener\">Optimizing I\/O for GPU performance tuning of deep learning training<\/a>)<\/li>\n\n\n\n<li>Monitor performance of the model&nbsp;<strong>(AWS Documentation:<\/strong>&nbsp;<a href=\"https:\/\/docs.aws.amazon.com\/sagemaker\/latest\/dg\/model-monitor.html\" target=\"_blank\" rel=\"noreferrer noopener\">Monitor models for data and model quality, bias, and explainability<\/a>,&nbsp;<a href=\"https:\/\/aws.amazon.com\/blogs\/machine-learning\/monitoring-in-production-ml-models-at-large-scale-using-amazon-sagemaker-model-monitor\/\" target=\"_blank\" rel=\"noreferrer noopener\">Monitoring in-production ML models at large scale<\/a>)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p>Each of these certifications is designed to help you stand out as a domain specialist in the AWS ecosystem \u2014 someone who doesn\u2019t just work with AWS, but leads and optimizes specialized workloads with confidence.<\/p>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-vivid-cyan-blue-background-color has-text-color has-background has-link-color wp-elements-27e95088d7f2622b12702f79163cbc13\"> <strong>Who Should Consider a Specialty Certification?<\/strong><\/h3>\n\n\n\n<p>AWS Specialty certifications aren\u2019t for beginners \u2014 they\u2019re designed for professionals who already have hands-on AWS experience and want to go deeper in a specific technical area. These certifications are ideal if you&#8217;re looking to transition into a specialized role, lead critical projects, or differentiate yourself in a competitive job market.<\/p>\n\n\n\n<p>Here\u2019s who will benefit the most:<\/p>\n\n\n\n<p><strong>1. Mid-Level to Senior Engineers with a Focus Area<\/strong><br>If you\u2019ve been working in AWS for a few years and find yourself leaning toward a particular niche \u2014 like security, data, or ML \u2014 a Specialty certification validates your depth in that domain. It shows you\u2019re not just certified in AWS generally, but that you own your area of expertise.<\/p>\n\n\n\n<p><strong>2. Professionals Preparing for Promotion or Leadership<\/strong><br>If you\u2019re already an associate or professional-level certified engineer and are aiming for architect, lead engineer, or domain-specific leadership roles, a Specialty cert can signal to your organization that you&#8217;re ready for more focused responsibility.<\/p>\n\n\n\n<p><strong>3. Consultants and Freelancers Who Need to Stand Out<\/strong><br>For independent professionals, a Specialty certification can set you apart in client conversations, proving you have authoritative knowledge in high-stakes areas like cloud security or machine learning.<\/p>\n\n\n\n<p><strong>4. Professionals in Regulated or Complex Industries<\/strong><br>If you work in industries like finance, healthcare, defense, or enterprise SAP environments, specialty certs (especially in Security, SAP, or Networking) are often seen as a baseline requirement for project roles or contracts.<\/p>\n\n\n\n<p><strong>5. Those Looking to Switch Specializations Within Cloud<\/strong><br>Already working in DevOps but want to move into data analytics? Working with EC2 but eyeing a role in ML engineering? A Specialty cert can help you pivot without going back to square one \u2014 it shows you\u2019ve made the leap with structured knowledge and hands-on skill.<\/p>\n\n\n\n<p>In short, if you\u2019re beyond the basics and want to go deep rather than wide, AWS Specialty certifications offer the right level of challenge, recognition, and relevance.<\/p>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center has-white-color has-vivid-cyan-blue-background-color has-text-color has-background has-link-color wp-elements-4ed96c15216184899e6f303230ba4bfa\"><strong>What makes AWS Specialty Certification Valuable?<\/strong><\/h3>\n\n\n\n<p>AWS Specialty certifications deliver real strategic value \u2014 not just as proof of technical ability, but as a signal that you can be trusted with complex, high-impact workloads. While associate and professional certifications establish broad cloud competency, Specialty certs show that you\u2019ve mastered the nuances of a specific domain \u2014 and that matters in today\u2019s specialized job market.<\/p>\n\n\n\n<p>Here\u2019s what makes them especially valuable:<\/p>\n\n\n\n<p><strong>1. Demonstrated Depth Over Breadth<\/strong><br>Specialty certifications don\u2019t test general knowledge \u2014 they assess your real-world problem-solving skills in high-stakes areas like security, networking, machine learning, or database optimization. They prove you can design, implement, and troubleshoot under pressure, using best practices across multiple services.<\/p>\n\n\n\n<p><strong>2. Increased Credibility with Employers and Clients<\/strong><br>These certs tell hiring managers, project leads, and clients that you&#8217;re more than just certified \u2014 you\u2019re an expert. Whether you&#8217;re working internally on critical systems or consulting externally, a Specialty cert enhances your trustworthiness and technical reputation.<\/p>\n\n\n\n<p><strong>3. Differentiation in Competitive Fields<\/strong><br>In a crowded market of cloud engineers and architects, Specialty certifications help you stand out for specialized roles. Whether it\u2019s a data-focused position, a cloud security lead, or an SAP migration specialist, being certified in a niche sets you apart from generalists.<\/p>\n\n\n\n<p><strong>4. Alignment with High-Growth Roles<\/strong><br>Specialty certs align with high-growth, high-paying job categories like:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Cloud Security Architect<\/li>\n\n\n\n<li>Machine Learning Engineer<\/li>\n\n\n\n<li>Data Analytics Specialist<\/li>\n\n\n\n<li>Cloud Database Administrator<\/li>\n\n\n\n<li>Cloud Networking Engineer<\/li>\n<\/ul>\n\n\n\n<p>These roles often require not just AWS experience but proof of targeted, deep skill sets \u2014 which these certifications offer.<\/p>\n\n\n\n<p><strong>5. Practical Skill Development<\/strong><br>The study process itself builds real-world capability. You don\u2019t just memorize \u2014 you apply. Preparing for these exams forces you to build, test, tune, and secure real AWS environments. That means you walk away with usable, job-ready skills, not just theory.<\/p>\n\n\n\n<p>In short, AWS Specialty certifications offer more than just career branding. They deliver career clarity, technical depth, and industry recognition in domains where expertise really matters.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Are AWS Specialty Certification Exam Difficult?<\/strong><\/h3>\n\n\n\n<p>Yes \u2014 AWS Specialty certifications are challenging, and they\u2019re meant to be. These exams are not designed for casual learners or beginners. They assume you already understand the fundamentals of AWS, and they go several layers deeper into real-world architecture, integration, performance tuning, and troubleshooting within a focused domain.<\/p>\n\n\n\n<p>What makes them difficult isn\u2019t obscure trivia \u2014 it\u2019s the realistic, scenario-based nature of the questions. You&#8217;re expected to:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Compare multiple AWS services for a complex workload<\/li>\n\n\n\n<li>Justify design choices based on cost, security, or compliance<\/li>\n\n\n\n<li>Understand limitations, trade-offs, and implementation details<\/li>\n\n\n\n<li>Troubleshoot architectures or optimize for scale, latency, or throughput<\/li>\n<\/ul>\n\n\n\n<p>For example:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>In the <strong>Security \u2013 Specialty<\/strong> exam, you may need to select the right encryption strategy across services while considering key rotation, IAM roles, and access logs.<\/li>\n\n\n\n<li>In the <strong>Machine Learning \u2013 Specialty<\/strong> exam, you\u2019re expected to choose between training strategies, adjust model tuning, and plan SageMaker pipelines.<\/li>\n<\/ul>\n\n\n\n<p>They are also time-intensive. With 65 scenario-heavy questions over nearly 3 hours, endurance matters. The questions often include subtle technical variations that can trip you up if you\u2019re only familiar with the basics.<\/p>\n\n\n\n<p>That said, if you already work in the domain and supplement your experience with focused study and hands-on practice, the exams are very passable. They reward professionals who solve problems, not just memorize definitions.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>When Might They Not Be Worth It?<\/strong><\/h3>\n\n\n\n<p>While AWS Specialty certifications are powerful credentials, they\u2019re not the right fit for everyone. In some cases, pursuing one might lead to misplaced effort, poor ROI, or limited relevance to your current goals. Here are a few scenarios where a Specialty cert might not be worth the investment:<\/p>\n\n\n\n<p><strong>1. You are New to AWS or Cloud Fundamentals<\/strong><br>If you haven\u2019t yet passed an associate-level certification (like Solutions Architect \u2013 Associate or Developer \u2013 Associate), jumping straight into a Specialty cert can be overwhelming. These exams assume you already understand how AWS services interact \u2014 and specialize on top of that foundation.<\/p>\n\n\n\n<p><strong>2. Your Role Doesn\u2019t Require Deep Specialization<\/strong><br>If you&#8217;re a product manager, generalist developer, or IT lead who only touches AWS occasionally, investing months of study into something like Advanced Networking or Data Analytics may not offer immediate professional returns. For broad roles, general AWS certs may be more practical and relevant.<\/p>\n\n\n\n<p><strong>3. Your Organization Is Multi-Cloud or Uses Other Vendors<\/strong><br>If your team or company splits its infrastructure across Azure, GCP, or on-prem environments \u2014 or if you\u2019re shifting toward platform-agnostic tooling \u2014 the time spent mastering niche AWS services might not translate into everyday value.<\/p>\n\n\n\n<p><strong>4. You&#8217;re Studying Just for the Badge<\/strong><br>AWS Specialty certs require real understanding and hands-on ability. If you&#8217;re pursuing one purely to stack your resume without genuinely working in that area, you may find the exam difficult, and the certification itself less meaningful over time.<\/p>\n\n\n\n<p><strong>5. You are Focused on Managerial or Non-Technical Career Paths<\/strong><br>If you are moving toward tech leadership, business analysis, or program management roles, the technical depth of Specialty certs may not align with your evolving responsibilities. Broader cloud strategy credentials \u2014 or even business-focused training \u2014 may offer more value.<\/p>\n\n\n\n<p>In summary: Specialty certs are ideal for practitioners, not dabblers. They\u2019re most valuable when aligned with what you do \u2014 or want to do \u2014 every day.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Industry Demand and Job Market Impact<\/strong><\/h3>\n\n\n\n<p>In today\u2019s cloud-driven economy, AWS Specialty certifications are becoming more than just nice-to-have \u2014 they\u2019re increasingly requested in job descriptions, preferred by recruiters, and valued by organizations looking to fill senior and niche technical roles.<\/p>\n\n\n\n<p>Here\u2019s how they\u2019re making an impact on the job market:<\/p>\n\n\n\n<p><strong>1. Rising Demand for Niche Cloud Skills<\/strong><br>Employers are no longer just looking for \u201ccloud engineers.\u201d They want cloud security specialists, data platform architects, ML engineers, and cloud database administrators. Specialty certifications prove that you don\u2019t just work in the cloud \u2014 you own your domain.<\/p>\n\n\n\n<p><strong>2. Specialty Certs Appear in Job Listings<\/strong><br>A quick search on LinkedIn or AWS Jobs reveals positions that explicitly mention certifications like:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u201cAWS Certified Security \u2013 Specialty preferred\u201d<\/li>\n\n\n\n<li>\u201cIdeal candidate holds AWS Certified Data Analytics \u2013 Specialty\u201d<\/li>\n\n\n\n<li>\u201cBonus if you have AWS ML or Database Specialty certification\u201d<\/li>\n<\/ul>\n\n\n\n<p>These certs strengthen your application and often move your resume closer to the top of the pile.<\/p>\n\n\n\n<p><strong>3. Higher Salary Potential in Focused Roles<\/strong><br>Cloud professionals with specialty certifications often command higher salaries, especially in security, analytics, or ML-focused roles. These certs are associated with senior-level expertise, which translates to better compensation and job mobility<\/p>\n\n\n\n<p><strong>4. Trust in Client-Facing and Regulated Roles<\/strong><br>For consultants, contractors, and professionals working with sensitive data or regulated industries (like finance or healthcare), Specialty certs offer an added layer of credibility and trustworthiness. Clients are more likely to trust you with security, compliance, or infrastructure decisions if you hold a cert that reflects your niche.<\/p>\n\n\n\n<p><strong>5. Differentiation in Crowded Cloud Job Markets<\/strong><br>As more professionals earn associate-level certs, employers begin to look for ways to distinguish serious specialists from generalists. Having a Specialty certification signals that you\u2019ve gone beyond the basics \u2014 and that you\u2019re ready for ownership, not just execution.<\/p>\n\n\n\n<p>In short, AWS Specialty certifications are increasingly becoming a differentiator in high-skill cloud job markets, especially for those targeting senior, technical, or domain-specific roles.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Cost vs. Value Analysis<\/strong><\/h3>\n\n\n\n<p>Like any professional investment, pursuing an AWS Specialty certification involves a trade-off between time, money, and long-term return. While the exam fee is modest compared to graduate programs or bootcamps, the real investment lies in the effort and preparation hours. So, is the value worth the cost? Let\u2019s break it down.<\/p>\n\n\n\n<p><strong>1. Financial Cost<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Exam fee<\/strong>: $300 USD<\/li>\n\n\n\n<li><strong>Optional practice exams<\/strong>: ~$40 USD (if using AWS-provided or official prep)<\/li>\n\n\n\n<li><strong>Study time<\/strong>: 40\u201380 hours on average (depending on your experience)<\/li>\n\n\n\n<li><strong>Other tools<\/strong>: Free-tier AWS account or low-cost sandboxes for hands-on labs<\/li>\n<\/ul>\n\n\n\n<p>Compared to the salaries offered for roles like Cloud Security Engineer, ML Architect, or Database Specialist, this investment is minimal and high-leverage.<\/p>\n\n\n\n<p><strong>2. Time Investment<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>For experienced professionals: ~4 to 6 weeks (10\u201312 hrs\/week)<\/li>\n\n\n\n<li>For mid-level professionals: ~2 to 3 months (8\u201310 hrs\/week)<\/li>\n\n\n\n<li>For those switching domains: ~3 to 4 months<\/li>\n<\/ul>\n\n\n\n<p>Time spent preparing translates directly into skill-building, which means you\u2019re not just preparing for an exam \u2014 you\u2019re improving your performance on the job.<\/p>\n\n\n\n<p><strong>3. Return on Investment (ROI)<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Increased <strong>job opportunities<\/strong> in high-growth areas like cloud security, big data, and machine learning<\/li>\n\n\n\n<li><strong>Salary bump potential<\/strong> for specialized roles \u2014 especially in North America, Europe, and APAC tech hubs<\/li>\n\n\n\n<li>Access to <strong>more senior or client-facing roles<\/strong> where trust and specialization matter<\/li>\n\n\n\n<li>Confidence in handling <strong>mission-critical systems<\/strong> and architectural decisions<\/li>\n<\/ul>\n\n\n\n<p><strong>4. Long-Term Career Value<\/strong><br>AWS Specialty certifications remain valid for 3 years, and during that time, they strengthen your professional brand and open doors to roles that require domain ownership, cross-functional collaboration, and technical leadership.<\/p>\n\n\n\n<p>For the right professional, the value far exceeds the cost. If you treat the preparation process as a skill-building journey rather than just a test to pass, you\u2019ll see that Specialty certs are both professionally and financially worthwhile.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Final Verdict: Are They Worth It?<\/strong><\/h3>\n\n\n\n<p>Yes \u2014 AWS Specialty certifications are absolutely worth it for professionals looking to establish themselves as experts in a specific cloud domain. They\u2019re not just badges of honor; they are proof that you\u2019ve mastered complex, high-stakes scenarios in areas like security, data analytics, machine learning, or cloud networking.<\/p>\n\n\n\n<p>These certifications show employers and clients that you\u2019ve gone beyond general cloud knowledge and are capable of designing, optimizing, and managing AWS services at a deep level. They can unlock new roles, accelerate promotions, boost your earning potential, and increase your influence within teams or organizations.<\/p>\n\n\n\n<p>However, they are not for everyone. If you&#8217;re new to AWS, unsure of your specialization, or pursuing a non-technical path, a Specialty cert might not be the best use of your time right now. But for hands-on professionals aiming to specialize and stand out, the return on investment is clear.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><a href=\"https:\/\/www.skilr.com\/aws-certified-machine-learning-specialty-free-practice-test\" target=\"_blank\" rel=\" noreferrer noopener\"><img data-dominant-color=\"94a9af\" data-has-transparency=\"false\" style=\"--dominant-color: #94a9af;\" decoding=\"async\" sizes=\"(max-width: 960px) 100vw, 960px\" src=\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/image-1.png\" alt=\"AWS Certified Machine Learning Specialty Free Test\" class=\"wp-image-3230 not-transparent\"\/><\/a><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>As cloud adoption matures, so does the demand for deeper, more specialized expertise. While general AWS certifications like Solutions Architect \u2013 Associate or DevOps Engineer \u2013 Professional are well-known entry points into the cloud world, many professionals are now asking: \u201cShould I pursue an AWS Specialty certification?\u201d AWS Specialty certifications are designed to validate advanced [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":3221,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[599,153],"tags":[817,814,826,816,822,823,815,824,825,818,819,821,820,827,828],"class_list":{"0":"post-3212","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-aws","8":"category-cloud-computing","9":"tag-are-aws-certifications-worth-it","10":"tag-aws-certification","11":"tag-aws-certification-for-beginners","12":"tag-aws-certification-path","13":"tag-aws-certification-training","14":"tag-aws-certification-tutorial","15":"tag-aws-certifications","16":"tag-aws-network-specialty-certification","17":"tag-aws-network-specialty-certification-dumps","18":"tag-aws-security-specialty-certification","19":"tag-certification","20":"tag-cloud-certification","21":"tag-cloud-certifications","22":"tag-free-aws-specialty-certification-voucher","23":"tag-is-aws-certification-worth-it"},"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Are AWS specialty certifications worth it? - Skilr Blog<\/title>\n<meta name=\"description\" content=\"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Are AWS specialty certifications worth it? - Skilr Blog\" \/>\n<meta property=\"og:description\" content=\"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\" \/>\n<meta property=\"og:site_name\" content=\"Skilr Blog\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-28T05:30:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-28T08:45:12+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"750\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Anandita Doda\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Anandita Doda\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"35 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\"},\"author\":{\"name\":\"Anandita Doda\",\"@id\":\"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a\"},\"headline\":\"Are AWS specialty certifications worth it?\",\"datePublished\":\"2025-05-28T05:30:00+00:00\",\"dateModified\":\"2025-05-28T08:45:12+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\"},\"wordCount\":8085,\"commentCount\":0,\"image\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp\",\"keywords\":[\"are aws certifications worth it\",\"aws certification\",\"aws certification for beginners\",\"aws certification path\",\"aws certification training\",\"aws certification tutorial\",\"aws certifications\",\"aws network specialty certification\",\"aws network specialty certification dumps\",\"aws security specialty certification\",\"certification\",\"cloud certification\",\"cloud certifications\",\"free aws specialty certification voucher\",\"is aws certification worth it\"],\"articleSection\":[\"AWS\",\"Cloud Computing\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\",\"url\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\",\"name\":\"Are AWS specialty certifications worth it? - Skilr Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp\",\"datePublished\":\"2025-05-28T05:30:00+00:00\",\"dateModified\":\"2025-05-28T08:45:12+00:00\",\"author\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a\"},\"description\":\"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!\",\"breadcrumb\":{\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage\",\"url\":\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp\",\"contentUrl\":\"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp\",\"width\":750,\"height\":400,\"caption\":\"Are AWS specialty certifications worth it?\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.skilr.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Are AWS specialty certifications worth it?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.skilr.com\/blog\/#website\",\"url\":\"https:\/\/www.skilr.com\/blog\/\",\"name\":\"Skilr Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.skilr.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a\",\"name\":\"Anandita Doda\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/440295a704e9c104e3a16811183811618885ee5b19dae8f4007736a01fb12a68?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/440295a704e9c104e3a16811183811618885ee5b19dae8f4007736a01fb12a68?s=96&d=mm&r=g\",\"caption\":\"Anandita Doda\"},\"url\":\"https:\/\/www.skilr.com\/blog\/author\/anandita2001dodagmail-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Are AWS specialty certifications worth it? - Skilr Blog","description":"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/","og_locale":"en_US","og_type":"article","og_title":"Are AWS specialty certifications worth it? - Skilr Blog","og_description":"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!","og_url":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/","og_site_name":"Skilr Blog","article_published_time":"2025-05-28T05:30:00+00:00","article_modified_time":"2025-05-28T08:45:12+00:00","og_image":[{"width":750,"height":400,"url":"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.png","type":"image\/png"}],"author":"Anandita Doda","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Anandita Doda","Est. reading time":"35 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#article","isPartOf":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/"},"author":{"name":"Anandita Doda","@id":"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a"},"headline":"Are AWS specialty certifications worth it?","datePublished":"2025-05-28T05:30:00+00:00","dateModified":"2025-05-28T08:45:12+00:00","mainEntityOfPage":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/"},"wordCount":8085,"commentCount":0,"image":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage"},"thumbnailUrl":"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp","keywords":["are aws certifications worth it","aws certification","aws certification for beginners","aws certification path","aws certification training","aws certification tutorial","aws certifications","aws network specialty certification","aws network specialty certification dumps","aws security specialty certification","certification","cloud certification","cloud certifications","free aws specialty certification voucher","is aws certification worth it"],"articleSection":["AWS","Cloud Computing"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/","url":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/","name":"Are AWS specialty certifications worth it? - Skilr Blog","isPartOf":{"@id":"https:\/\/www.skilr.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage"},"image":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage"},"thumbnailUrl":"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp","datePublished":"2025-05-28T05:30:00+00:00","dateModified":"2025-05-28T08:45:12+00:00","author":{"@id":"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a"},"description":"Get ready to become a AWS Specialty Professional with the latest and updated practice series and interview questions. Try Now!","breadcrumb":{"@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#primaryimage","url":"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp","contentUrl":"https:\/\/www.skilr.com\/blog\/wp-content\/uploads\/2025\/05\/How-difficult-is-the-AWS-Database-Specialty-Exam-1.webp","width":750,"height":400,"caption":"Are AWS specialty certifications worth it?"},{"@type":"BreadcrumbList","@id":"https:\/\/www.skilr.com\/blog\/are-aws-specialty-certifications-worth-it\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.skilr.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Are AWS specialty certifications worth it?"}]},{"@type":"WebSite","@id":"https:\/\/www.skilr.com\/blog\/#website","url":"https:\/\/www.skilr.com\/blog\/","name":"Skilr Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.skilr.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/218260d62d3339338ae5afdb5f5c449a","name":"Anandita Doda","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.skilr.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/440295a704e9c104e3a16811183811618885ee5b19dae8f4007736a01fb12a68?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/440295a704e9c104e3a16811183811618885ee5b19dae8f4007736a01fb12a68?s=96&d=mm&r=g","caption":"Anandita Doda"},"url":"https:\/\/www.skilr.com\/blog\/author\/anandita2001dodagmail-com\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/posts\/3212","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/comments?post=3212"}],"version-history":[{"count":5,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/posts\/3212\/revisions"}],"predecessor-version":[{"id":3232,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/posts\/3212\/revisions\/3232"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/media\/3221"}],"wp:attachment":[{"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/media?parent=3212"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/categories?post=3212"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.skilr.com\/blog\/wp-json\/wp\/v2\/tags?post=3212"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}