AWS Monitoring and Logging Services (CLF-C02)

Welcome to the AWS Monitoring and Logging Services practice lab. In this module, you will be provided with the instructions and devices needed to develop your hands-on skills.

In this module, you will explore Amazon Web Services (AWS) CloudWatch, AWS Shield, and AWS Artifact.

AWS CloudWatch is a management and monitoring service providing real-time insight into AWS resources, enabling users to collect and track metrics and logs, set alarms, and react to environmental changes in AWS.

AWS Shield is a Distributed Denial-of-Service (DDoS) protection service managed by AWS, blocking harmful and malicious traffic and ensuring high availability and security. It offers advanced threat intelligence and detection mechanisms to mitigate DDoS attacks.

AWS Artifact is a portal that provides on-demand access to AWS compliance reports, reducing the complexity and time involved in ensuring adherence to regulatory requirements. It offers a central repository for documentation, including compliance reports and agreements, helping organizations navigate and demonstrate their compliance with various standards and regulations.

Together, CloudWatch, Shield, and Artifact contribute to the overall robustness, security, and compliance of AWS-based applications and services.

Overview

Learning Outcomes

In this module, you will complete the following exercises:

  • Exercise 1 – Create an EC2 Instance and Supporting Infrastructure
  • Exercise 2 – Use AWS CloudWatch
  • Exercise 3 – Explore AWS Shield
  • Exercise 4 – Use AWS Artifact

After completing this module, you should be able to:

  • Create a Virtual Private Cloud (VPC).
  • Create an Elastic Compute Cloud (EC2) instance.
  • View available CloudWatch metrics.
  • Discover AWS Shield pricing and global activity.
  • Download an AWS Artifact report.

Exam Objectives

The following exam objectives are covered in this module:

2.2 Understand AWS Cloud security, governance, and compliance concepts

  • Skills – Identifying where to find AWS compliance information (for example, AWS Artifact)
  • Skills – Describing how customers secure resources on AWS (for example, Amazon Inspector, AWS Security Hub, Amazon GuardDuty, AWS Shield)
  • Skills – Recognizing services that aid in governance and compliance (for example, monitoring with Amazon CloudWatch; auditing with AWS CloudTrail, AWS Audit Manager, and AWS Config; reporting with access reports)
  • Skills – Recognizing compliance requirements that vary among AWS services
Courses