| Exam Name | AWS Certified Security - Specialty |
| Exam Code | SCS-C01 |
| Actual Exam Duration | The duration of the Amazon Web Services SCS-C01 exam is 170 minutes. |
| Expected no. of Questions in Actual Exam | 65 |
| What exam is all about | The Amazon Web Services (AWS) SCS-C01 exam is a certification exam that tests the knowledge and skills of individuals in designing and deploying secure and scalable AWS systems. The exam covers various topics such as AWS services, security, networking, database, and deployment. It is intended for individuals who have experience in designing and implementing AWS solutions and want to validate their skills and knowledge in this area. Passing the SCS-C01 exam leads to the AWS Certified Security - Specialty certification. |
| Passing Score required | The passing score required in the Amazon Web Services SCS-C01 exam is 720 out of 1000. This means that you need to answer at least 72% of the questions correctly to pass the exam. The exam consists of multiple-choice and multiple-response questions, and you have 130 minutes to complete it. It is recommended that you have at least one year of experience in designing and deploying scalable, highly available, and fault-tolerant systems on AWS before taking this exam. |
| Questions Format | multiple choice or multiple response. |
| Delivery of Exam | The Amazon Web Services SCS-C01 exam is an online proctored exam that can be taken remotely from anywhere with a stable internet connection. It is a multiple-choice exam that consists of 65 questions and has a time limit of 130 minutes. The exam is designed to test the candidate's knowledge and skills in various AWS services and concepts related to security, compliance, and governance. |
| Language offered | This exam is offered in the following languages: English, French (France), German, Italian, Japanese, Korean, Portuguese (Brazil), Simplified Chinese, and Spanish (Latin America). |
| Cost of exam | $300 USD |
| Target Audience | This credential helps organizations identify and develop talent with critical skills for implementing cloud initiatives. Earning AWS Certified Security – Specialty validates expertise in securing data and workloads in the AWS Cloud. |
| Average Salary in Market | The average salary for an AWS Certified Solutions Architect - Associate is around $130,000 per year in the United States. However, the salary may vary depending on the location, experience, and job role. |
| Testing Provider | Pearson VUE testing center or online proctored exam. |
| Recommended Experience | AWS Certified Security – Specialty is intended for individuals who perform a security role and have at least two years of hands-on experience securing AWS workloads. Before you take this exam, we recommend you have:
|
| Prerequisite | The prerequisites for the AWS Certified Security - Specialty (SCS-C01) exam are: 1. A minimum of two years of hands-on experience in IT security, designing and implementing security solutions using AWS services. 2. A deep understanding of AWS security services and features, including AWS Identity and Access Management (IAM), AWS Key Management Service (KMS), AWS Certificate Manager (ACM), AWS CloudTrail, AWS Config, AWS CloudFormation, AWS CloudWatch, and AWS GuardDuty. 3. Knowledge of security best practices and compliance requirements, such as the General Data Protection Regulation (GDPR), the Payment Card Industry Data Security Standard (PCI DSS), and the Health Insurance Portability and Accountability Act (HIPAA). 4. Familiarity with networking concepts, such as TCP/IP, DNS, VPN, and firewalls. 5. Experience with scripting languages, such as Python, PowerShell, and Bash. 6. A solid understanding of security concepts, such as encryption, authentication, authorization, and auditing. 7. A good understanding of the AWS shared responsibility model and the AWS Well-Architected Framework. |
| Retirement (If Applicable) | AWS exams typically have a lifespan of around two years before they are retired and replaced with updated versions. It is recommended to check the AWS website or contact their support team for the most up-to-date information on exam retirements. |
| Certification Track (RoadMap): | The certification track/roadmap for the Amazon Web Services SCS-C01 exam is as follows: 1. AWS Certified Solutions Architect – Associate: This is the first level of certification in the AWS Solutions Architect track. It validates your ability to design and deploy scalable, highly available, and fault-tolerant systems on AWS. 2. AWS Certified Solutions Architect – Professional: This is the second level of certification in the AWS Solutions Architect track. It validates your ability to design and deploy complex applications on AWS, and your knowledge of advanced AWS services and architectures. 3. AWS Certified DevOps Engineer – Professional: This certification validates your ability to design, deploy, and manage applications on AWS using DevOps principles and practices. 4. AWS Certified Security – Specialty: This certification validates your ability to design and implement secure applications on AWS, and your knowledge of AWS security services and best practices. 5. AWS Certified Advanced Networking – Specialty: This certification validates your ability to design and implement advanced networking solutions on AWS, and your knowledge of AWS networking services and best practices. 6. AWS Certified Machine Learning – Specialty: This certification validates your ability to design, implement, and deploy machine learning solutions on AWS, and your knowledge of AWS machine learning services and best practices. The SCS-C01 exam is part of the AWS Certified Security – Specialty certification track. It validates your ability to design and implement secure applications on AWS, and your knowledge of AWS security services and best practices. |
| Official Information | https://aws.amazon.com/certification/certified-security-specialty/ |
| See Expected Questions | Amazon Web Services SCS-C01 Expected Questions in Actual Exam |
| Take Self-Assessment | Use Amazon Web Services SCS-C01 Practice Test to Assess your preparation - Save Time and Reduce Chances of Failure |
| Section | Weight | Objectives |
|---|---|---|
| Domain 1: Incident Response | 12% | 1.1 Given an AWS abuse notice, evaluate the suspected compromised instance or exposed access keys. 1.2 Verify that the Incident Response plan includes relevant AWS services. 1.3 Evaluate the configuration of automated alerting,and execute possible remediation of security-related |
| Domain 2:Logging and Monitoring | 20% | 2.1 Design and implement security monitoring and alerting. 2.2 Troubleshoot security monitoring and alerting. 2.3 Design and implement a logging solution. 2.4 Troubleshoot logging solutions |
| Domain 3: Infrastructure Security | 26% | 3.1 Design edge security on AWS. 3.2 Design and implement a secure network infrastructure. 3.3 Troubleshoot a secure network infrastructure. 3.4 Design and implement host-based security. |
| Domain 4: Identity and Access Management | 20% | 4.1 Design and implement a scalable authorization and authentication system to access AWS resources. 4.2 Troubleshoot an authorization and authentication system to access AWS resources. |
| Domain 5: Data Protection | 22% | 5.1 Design and implement key management and use. 5.2 Troubleshoot key management. 5.3 Design and implement a data encryption solution for data at rest and data in transit. |
TESTED 22 Nov 2024
