AWS global infrastructure (for example, Availability Zones, AWS Regions, Amazon Route 53)
Basic networking concepts (for example, route tables)
Collect metrics and logs by using the CloudWatch agent.
Describing AWS security features and services (for example, security groups, network ACLs, AWS WAF)
Data ingestion patterns (for example, frequency and data history)
Understanding that third-party security products are available from AWS Marketplace
Disaster recovery (DR) strategies (for example, backup and restore, pilot light, warm standby, active-active failover, recovery point objective [RPO], recovery time objective [RTO])
Create CloudWatch alarms.
Identifying where AWS security information is available (for example, AWS Knowledge Center, AWS Security Center, AWS Security Blog)
Understanding the use of AWS services for identifying security issues (for example, AWS Trusted Advisor)
Distributed design patterns
Batch data ingestion (for example, scheduled ingestion, event-driven ingestion)
Deciding between options such as programmatic access (for example, APIs, SDKs, CLI), the AWS Management Console, and infrastructure as code (IaC)
Evaluating requirements to determine whether to use one-time operations or repeatable processes