So last Thursday I sat the Security Specialty Exam and passed! Here are some things that I saw on my exam that you can be sure to study in case you see them too. Hope this helps.
Active Directory (AD)
There was an annoying amount of questions around AD so you should probably know this inside and out.
The differences between federation protocols like SAML and OIDC and when to use them.
How AD users are granted permissions and how they are associated with AWS IAM entities (roles, groups, and users).
How STS is involved with AD.
What CLI commands are used with AD.
What CloudTrail tracks in regards to AD.
Cross Account Permissions
There was a lot of scenarios asking how cross-account permissions should be granted to different AWS components.
How to limit permissions from an obscene amount of AWS accounts (1000+) when Service Control Policies (SCP) are NOT an option.
AWS Certificate Manager (ACM)
There were questions asking in-depth questions about ACM.
What Private Certificate Authority (CA) is and how/when to use it.
How certificates are distributed to your AWS entities such as: CloudFront, ELB, EC2, etc.
The number of certificates you need for a given scenario.
The region in which ACM certificates are stored.
How public/private certificates are managed.
Congratulations Jutin ! Any whitepapers or reinvent videos you found helpful and would recommend I am planning to take the exam in next 2 weeks
Congratulations, nicely done! That’s a lot of brilliant feedback too (Active Directory is an interesting one there), and hopefully, it helps others with their studies as well. Well done, and enjoy your success!
Best of luck with the next steps on your cloud journey!
I’ve just completed Security speciality exam & found few more topics appeared:
ACM, IOT, ADFS & Cloud directory, IPS & review VPC logs to find correct answer.