AWS Services, Explained in Five Questions
Every service card answers the questions that actually matter when you meet a new AWS service: What is it, why does it exist, when should you pick it, where does it sit in an architecture, and how do you integrate it — plus exam-angle tips and links to the official AWS documentation and blogs. Coverage is tuned to the AWS Certified AI Practitioner (AIF-C01) exam.
Show services for your learning path
The 5 services below are the ones the Security Engineering on AWS path expects you to know. Open the study path →
🛡️ Security & Governance · 5
AWS IAMWho can do what — identities, roles, and policies.The global identity and access service: users, groups, roles, and JSON policies that allow or deny every API action across AWS, with roles providin…What · Why · When · Where · How →AWS KMSManaged encryption keys for data at rest everywhere.A managed key service that creates and controls cryptographic keys, integrates with 100+ AWS services for at-rest encryption, and logs every key us…What · Why · When · Where · How →Amazon MacieML-powered discovery of sensitive data in S3.A data-security service that continuously inventories S3 and uses machine learning plus pattern matching to find sensitive data — PII, credentials,…What · Why · When · Where · How →AWS CloudTrailThe audit log of every API call in your account.A governance service recording who called which API, when, from where — management events by default, optional data events (e.g. S3 object reads, B…What · Why · When · Where · How →AWS ConfigContinuous resource-configuration compliance.A service that records the configuration of your resources over time and evaluates them against rules — flagging, for example, an unencrypted SageM…What · Why · When · Where · How →
Preparing for the exam? Start the AI Practitioner study guide or jump into the AIF-C01 learning path.