AWS Certified Security Specialty (SCS-C01) Exam Guide | CyberNcrypt
Introduction
The AWS Certified Security Specialty (SCS-C01) exam is designed for people who work in security. The exam validates a candidate’s ability to effectively demonstrate knowledge of AWS platform security.
The exam also determines whether a candidate possesses the following characteristics:
- Knowledge of specialized data classifications and AWS data security mechanisms
- An understanding of data-encryption methods as well as the AWS mechanisms used to implement them
- An understanding of secure internet protocols, as well as the AWS mechanisms, used to implement them
- A working understanding of AWS security services and features to provide a secure production environment
- Competency in using AWS security services and features based on two or more years of production deployment experience
- The ability to make the cost, security, and deployment complexity tradeoff decisions in order to meet a set of application requirements
- Working knowledge of security operations and risks
Description of the ideal candidate
The ideal candidate will have 5 years of experience designing and implementing security solutions in the IT industry. Furthermore, the ideal candidate should have at least two years of hands-on experience securing AWS workloads.
The ideal candidate should be familiar with the following topics:
- The AWS shared responsibility model and its application
- Security controls for workloads on AWS
- Logging and monitoring strategies
- Cloud security threat models
- Patch management and security automation
- Ways to enhance AWS security services with third-party tools and services
- Disaster recovery controls, including BCP and backups
- Encryption
- Access control
- Data retention
Exam Details
The exam contains two types of questions:
- Multiple choice: There is one correct answer and three incorrect answers (distractors).
- Multiple responses: Has two or more correct responses out of a possible five.
There is no penalty for guessing; unanswered questions are scored as incorrect.
The exam includes 15 unscored questions that have no bearing on your final score. AWS collects data on candidate performance on these unscored questions in order to evaluate them for future use as scored questions. These unanswered questions are not marked on the exam.
The AWS Certified Security – Specialty (SCS-C01) exam is graded on a pass/fail basis. The exam results are reported as a scaled score of 100-1,000. A passing score of 750 is required.
Because the exam employs a compensatory scoring model, you do not need to achieve a passing score in each section. You only need to pass the overall exam.
Each section of the exam has a different weighting, some sections have more questions than others.
Test domains and Weightage
The image below depicts the domains that will be covered in the exam and their corresponding weightage.
For more details and Syllabus please refer to the file given below
