Interactive preview set

Six scenario-heavy SAP-style questions to mirror the coming full bank. Pick answers, submit, and see a percentage plus rationales.

    Answer key with rationales
    1. AWS Control Tower with landing zone, mandatory guardrails, and centralized CloudTrail/Config
      Control Tower automates account vending, baseline guardrails, and central logging for multi-account governance.
    2. Use AWS Direct Connect with a private VIF and Database Migration Service continuous replication to Aurora PostgreSQL
      Direct Connect provides private, consistent latency; DMS supports near-real-time replication into Aurora for phased cutover.
    3. Use AWS Network Firewall in a shared services VPC with AWS Transit Gateway for centralized egress and inspection
      Network Firewall plus Transit Gateway centralizes inspection and simplifies routes for many VPCs and Regions.
    4. Convert data to columnar Parquet in S3 with partitioning and use Redshift Spectrum or COPY from Parquet
      Parquet reduces I/O and size; Spectrum or Parquet COPY improves performance and predictability for large ingests.
    5. Use AWS App Mesh with AWS Gateway Load Balancer and partner appliance for transparent inspection
      App Mesh integrates with Gateway Load Balancer and partner firewalls for managed, service-to-service inspection with less custom ops.
    6. Use an S3 bucket in a data producer account with Object Lock, versioning, lifecycle rules, and cross-account IAM policies
      Central S3 with Object Lock, versioning, lifecycle, and cross-account access provides governed sharing and delete protection.