Back to projects
AWS Solutions Architect Professional Notes
Cloud

AWS Solutions Architect Professional Notes

AWSCloud ArchitectureSAP-C02CertificationSolutions Architect
View on GitHub

This repository is my study guide for the AWS Certified Solutions Architect Professional (SAP-C02) exam. I started writing it while preparing for the certification because the exam covers such a wide surface area that I needed one place to consolidate everything I was reading across the official AWS documentation, whitepapers, and various training courses.

The Professional level exam is a significant step up from the Associate. It assumes you already know the individual AWS services and instead focuses on how to combine them to solve complex problems. A typical question gives you a scenario with multiple constraints around cost, performance, compliance, and operational overhead, then asks you to pick the best architecture. The notes are organized to reflect that scenario based thinking rather than going service by service.

A big portion of the material covers multi account strategies using AWS Organizations, Control Tower, and Service Control Policies. Understanding how to design landing zones, manage permissions across hundreds of accounts, and centralize logging and security is fundamental at this level. I spent a lot of time mapping out account structures and the trade offs between centralized and decentralized approaches.

Migration is another heavy area. The exam expects deep familiarity with the AWS Migration Hub, Application Migration Service, Database Migration Service, and the various Snow family devices for data transfer. Beyond knowing the tools, you need to understand which strategy fits which situation: rehost, replatform, refactor, repurchase, retire, or retain. The notes walk through each strategy with concrete examples of when each one makes sense.

Networking at the Professional level goes well beyond VPCs and subnets. Transit Gateway, hybrid connectivity with Direct Connect and Site to Site VPN, DNS architectures with Route 53 resolver, and global traffic management with Global Accelerator and CloudFront all show up frequently. I made sure to capture the failure modes and the cost implications of each pattern because those are exactly the kinds of details the exam tests.

Security and compliance threads through every domain. The notes cover identity federation, cross account access patterns, encryption with KMS and CloudHSM, secrets management, and how to build defense in depth across application, network, and data layers. There is also coverage of compliance frameworks and how AWS services map to common controls.

Cost optimization gets its own dedicated section because the Professional exam takes it seriously. Reserved Instances, Savings Plans, Spot Instances, lifecycle policies, and architectural choices that reduce cost are all covered. The exam often presents two technically correct answers where the difference comes down to which one is cheaper at scale.

The notes are organized by exam domain to match the official guide. Each section has the key concepts, the gotchas I noticed while studying, and links to the most useful AWS documentation. If you are preparing for the same certification I hope these notes save you some time.