← Back to Paths
[PLACEHOLDER hero banner]
AWS Solutions Architect: Associate to Pro
Bridge the gap from passing SAA-C03 to designing enterprise-grade AWS architectures like a Pro.
CREATED BY
B
Bhavya Z. [PLACEHOLDER] ★ 5.0
Senior Software Engineer at PayFriend | 8+ years of experience
About this Path
For engineers who hold or understand the AWS SAA-C03 level and want to reach Solutions Architect Professional. This roadmap covers advanced networking, multi-account governance, serverless at scale, cost engineering, and the Well-Architected review process. Prepares you for the SAP-C02 exam and senior cloud architect interviews.
Path Overview
Advanced LevelCertificate of CompletionAbout 70 hours to completeEnglish language24+ curated videosLearn online at your own pace5 modules with resourcesGamified & interactive
Path Curriculum
AWS Organizations and Service Control Policies at scale
OU hierarchy design, SCP guardrail patterns, and preventive vs detective controls.
AWS Control Tower: landing zone, guardrails, and account factory
Account vending with Account Factory for Terraform, drift detection, and customization hooks.
IAM Identity Center: SSO, permission sets, and ABAC
Attribute-based access control, external IdP federation, and cross-account role chaining.
AWS Config, CloudTrail Lake, and compliance automation
Custom Config rules with Lambda, aggregator accounts, and automated remediation with SSM.
Transit Gateway: hub-and-spoke, peering, and route tables
Centralized inspection VPC, TGW route domain segmentation, and inter-region peering.
AWS Direct Connect and Site-to-Site VPN high availability
Hosted vs dedicated connections, LAG bonding, failover to VPN, and BGP community tuning.
Global Accelerator, CloudFront, and Route 53 routing policies
Latency-based, geoproximity, weighted, and failover policies with health check integration.
VPC advanced: PrivateLink, VPC Lattice, and network firewall
Endpoint service publishing, distributed inspection with AWS Network Firewall, and VPC Lattice service directory.
Lambda at scale: cold starts, concurrency limits, and Graviton
Provisioned concurrency, reserved vs unreserved, arm64 cost savings, and SnapStart for Java.
EventBridge: schema registry, pipes, and event bus routing
Content-based filtering, archive and replay, EventBridge Pipes for EDA simplification.
Step Functions: Express vs Standard, distributed Map, and error handling
Long-running workflows, idempotency with task tokens, and Distributed Map for S3 batch.
Data lake on S3: Lake Formation, Glue, Athena, and Redshift Spectrum
Column-level security, crawler scheduling, partition projection, and federated query design.
Threat detection: GuardDuty, Macie, Inspector, and Security Hub
Finding aggregation, custom insights, automated response with EventBridge and Lambda.
Multi-region active-active and disaster recovery patterns
Pilot light, warm standby, and active-active with Route 53 ARC and DynamoDB Global Tables.
AWS cost optimization: Savings Plans, Spot, and Compute Optimizer
Spot interruption handling with SQS checkpointing, Compute Optimizer rightsizing, and CUR analysis.
Chaos engineering on AWS with Fault Injection Simulator
AZ failure experiments, latency injection, and validating Multi-AZ failover SLOs.
Well-Architected Framework: six pillars applied to a real workload
Running a WAF review, interpreting high-risk issues, and creating an improvement roadmap.
SAP-C02 exam strategy: scenario analysis and elimination techniques
Reading EXCEPT/MOST/LEAST qualifiers, AWS service substitution traps, and time management.
Architecture case study: three-tier to serverless migration design
Full whiteboard walkthrough from legacy ALB+EC2+RDS to Lambda+API GW+Aurora Serverless v2.
What you'll learn
- ✓Design multi-account AWS Organizations with SCPs, Control Tower, and account vending pipelines.
- ✓Architect hybrid and multi-region networking using Transit Gateway, Direct Connect, and AWS Global Accelerator.
- ✓Build event-driven serverless platforms using Lambda, EventBridge, Step Functions, and SQS/SNS at scale.
- ✓Implement a full security posture with GuardDuty, Security Hub, AWS Config rules, and CloudTrail analysis.
- ✓Optimize AWS costs using Savings Plans, Spot fleets, rightsizing recommendations, and Compute Optimizer.
- ✓Conduct Well-Architected Framework reviews and produce actionable improvement plans for existing workloads.