AWS SERVICES INTERVIEW QUESTIONS

 

---

🔹 AWS Fundamentals (Must-Know)

1. What is AWS?

2. What are the advantages of AWS?

3. Explain Cloud Computing.

4. What are IaaS, PaaS, SaaS?

5. What is the AWS Shared Responsibility Model?

6. What is an AWS Region?

7. What is an Availability Zone?

8. Difference between Region and AZ?

9. What is an Edge Location?

10. What is AWS Free Tier?

---

🔹 Identity & Security (IAM)

11. What is AWS IAM?

12. Difference between IAM User, Group, Role?

13. What is an IAM Policy?

14. What is MFA?

15. What is STS?

16. What is least privilege access?

17. Difference between IAM Role and User?

18. How do you secure AWS accounts?

19. What is AWS KMS?

20. What is AWS Secrets Manager?

---

🔹 Compute Services

21. What is Amazon EC2?

22. What are EC2 instance types?

23. What is an AMI?

24. Difference between On-Demand, Reserved, Spot instances?

25. What is Auto Scaling?

26. What is Elastic Load Balancer (ELB)?

27. Types of Load Balancers in AWS?

28. What is AWS Lambda?

29. Difference between EC2 and Lambda?

30. What is a cold start in Lambda?

---

🔹 Storage Services

31. What is Amazon S3?

32. What is an S3 bucket?

33. What are S3 storage classes?

34. What is S3 versioning?

35. What is S3 lifecycle policy?

36. What is Amazon EBS?

37. Difference between EBS and EFS?

38. What is Amazon Glacier?

39. What is cross-region replication?

40. How do you secure S3 data?

---

🔹 Networking (High Priority)

41. What is a VPC?

42. What is a Subnet?

43. Difference between Public and Private Subnet?

44. What is an Internet Gateway?

45. What is a NAT Gateway?

46. What is a Route Table?

47. Difference between Security Group and NACL?

48. What is Elastic IP?

49. What is Route 53?

50. What is DNS?

---

🔹 Database Services

51. What is Amazon RDS?

52. Supported databases in RDS?

53. What is Multi-AZ deployment?

54. What is a Read Replica?

55. Difference between RDS and DynamoDB?

56. What is Amazon DynamoDB?

57. What is a partition key?

58. What is Amazon Aurora?

59. Difference between Aurora and RDS?

60. What is AWS Redshift?

---

🔹 Monitoring & Management

61. What is Amazon CloudWatch?

62. Difference between CloudWatch and CloudTrail?

63. What is AWS CloudTrail?

64. What is AWS Config?

65. What is AWS Trusted Advisor?

66. What is AWS Systems Manager?

67. What is CloudWatch Alarm?

68. How do you monitor AWS resources?

69. What is AWS Health Dashboard?

70. What is AWS Well-Architected Framework?

---

🔹 DevOps & Automation

71. What is Infrastructure as Code (IaC)?

72. What is AWS CloudFormation?

73. Difference between CloudFormation and Terraform?

74. What is AWS CodePipeline?

75. What is CodeBuild?

76. What is CodeDeploy?

77. What is Blue-Green Deployment?

78. What is CI/CD?

79. What is AWS Elastic Beanstalk?

80. What is AWS OpsWorks?

---

🔹 AI / ML & GenAI (Modern AWS)

81. What is Amazon SageMaker?

82. What is Amazon Rekognition?

83. What is Amazon Comprehend?

84. What is Amazon Lex?

85. What is Amazon Textract?

86. What is Amazon Polly?

87. What is Amazon Bedrock?

88. Difference between Bedrock and SageMaker?

89. What are Foundation Models?

90. What is RAG (Retrieval Augmented Generation)?

---

🔹 High Availability & Disaster Recovery

91. What is High Availability?

92. What is Fault Tolerance?

93. Difference between Backup and DR?

94. What is RTO and RPO?

95. What is Multi-Region architecture?

96. What happens if an AZ fails?

97. What is Auto Scaling with ELB?

98. How does S3 ensure durability?

99. How do you design a fault-tolerant system?

100. How do you reduce AWS cost?

---

🔹 Rapid-Fire (One-Line)

• Is IAM global or regional?

• Is S3 global?

• Max S3 object size?

• Can Lambda run inside VPC?

• Default VPC?

• What is CIDR?

• Can Security Groups deny traffic?

• What is Spot interruption?

• What is AWS Shield?

• What is AWS WAF?

🔹 Advanced IAM & Security

1. How does IAM policy evaluation logic work?

2. Difference between identity-based and resource-based policies?

3. What is explicit deny?

4. What is AWS Organizations?

5. What is Service Control Policy (SCP)?

6. How do you secure a multi-account AWS setup?

7. What is cross-account access?

8. How does STS AssumeRole work?

9. What is AWS Shield Standard vs Advanced?

10. How does AWS WAF protect applications?

11. What is AWS GuardDuty?

12. What is Amazon Inspector?

13. What is AWS Macie?

14. How do you protect against DDoS attacks?

15. How do you manage secrets securely?

---

🔹 Advanced Networking (Very Important)

16. Difference between VPC Peering and Transit Gateway?

17. What is AWS Transit Gateway?

18. What is VPC Endpoint?

19. Difference between Interface and Gateway Endpoint?

20. What is PrivateLink?

21. What is Hybrid Cloud?

22. What is Direct Connect?

23. Difference between Direct Connect and VPN?

24. What is Global Accelerator?

25. How does Route 53 failover routing work?

26. What is Latency-based routing?

27. What is Split-horizon DNS?

28. What is IPv6 support in AWS?

29. What is Network Firewall?

30. How do you isolate workloads in VPC?

---

🔹 Advanced Compute & Containers

31. What is AWS ECS?

32. Difference between ECS, EKS, and Kubernetes?

33. What is AWS EKS?

34. What is Fargate?

35. What is Node Group in EKS?

36. What is Cluster Autoscaler?

37. How does Lambda scale internally?

38. What are Lambda limits?

39. What is Step Functions?

40. When do you use Step Functions vs Lambda?

---

🔹 Advanced Storage & Data Management

41. What is S3 Strong Consistency?

42. What is S3 Object Lock?

43. What is S3 Access Point?

44. What is S3 Select?

45. Difference between Glacier Instant, Flexible, Deep Archive?

46. What is EBS Snapshot lifecycle?

47. What is AWS Backup?

48. What is Storage Gateway?

49. What is Snowball / Snowmobile?

50. How do you migrate petabyte-scale data?

---

🔹 Advanced Databases & Analytics

51. What is Amazon DynamoDB Global Tables?

52. What is DynamoDB Streams?

53. What is DAX?

54. What is Amazon Aurora Serverless?

55. What is Amazon ElastiCache?

56. Difference between Redis and Memcached?

57. What is Amazon Redshift Spectrum?

58. What is Amazon Athena?

59. What is AWS Glue?

60. What is Lake Formation?

---

🔹 Observability & Reliability Engineering

61. What is AWS X-Ray?

62. How do you trace distributed systems?

63. What are SLI, SLO, SLA?

64. What is Chaos Engineering?

65. What is Fault Injection Simulator?

66. What is Auto Healing?

67. What is CloudWatch Logs Insights?

68. How do you reduce MTTR?

69. What is event-driven architecture?

70. What is Amazon EventBridge?

---

🔹 DevOps & Platform Engineering

71. What is GitOps?

72. How does CodePipeline integrate with IaC?

73. What is Canary deployment?

74. How do you do zero-downtime deployments?

75. What is AWS CDK?

76. Difference between CDK and CloudFormation?

77. How do you manage secrets in CI/CD?

78. What is Immutable Infrastructure?

79. What is Amazon ECR?

80. What is Amazon EKS Blueprints?

---

🔹 Cost Optimization & Governance

81. What is AWS Cost Explorer?

82. What are Savings Plans?

83. Difference between Savings Plans and Reserved Instances?

84. What is AWS Budgets?

85. What is Compute Optimizer?

86. How do you design cost-optimized architectures?

87. What is rightsizing?

88. What is spot fleet?

89. How do you manage unused resources?

90. What is chargeback / showback?

---

🔹 GenAI & AI (Senior Level)

91. How do you build RAG using Bedrock?

92. What is vector similarity search?

93. How does OpenSearch vector indexing work?

94. What is Bedrock Agents?

95. How do you prevent hallucinations?

96. What is Guardrails for Bedrock?

97. Bedrock vs OpenAI vs Azure OpenAI?

98. How do you secure GenAI APIs?

99. How do you monitor GenAI cost?

100. How do you productionize GenAI?

---

🔹 Cloud Architecture & Design

1. How do you design a globally distributed, low-latency system on AWS?

2. How do you choose between Multi-AZ vs Multi-Region?

3. What are cell-based architectures?

4. What is blast radius and how do you minimize it?

5. How do you design for eventual consistency?

6. How do you handle idempotency in distributed systems?

7. How do you design stateless vs stateful services?

8. What is back-pressure and how do you handle it?

9. How do you design for throttling and rate limiting?

10. How do you avoid single points of failure?

---

🔹 Distributed Systems & Scalability

11. What is the CAP theorem and how does AWS handle it?

12. How does DynamoDB achieve scalability?

13. How does S3 achieve 11 nines durability?

14. What is sharding?

15. What is hot partition problem?

16. How do you design globally consistent databases?

17. How does Aurora Global Database work?

18. What is event sourcing?

19. What is CQRS?

20. What is saga pattern?

---

🔹 Advanced Networking & Traffic Management

21. When would you use Global Accelerator vs CloudFront?

22. How does Anycast routing work?

23. What is cross-region load balancing?

24. How does AWS Shield mitigate DDoS?

25. What is TLS termination?

26. How do you implement mTLS on AWS?

27. How do you do zero-trust networking?

28. What is egress-only internet gateway?

29. How do you monitor network latency?

30. How do you design secure service-to-service communication?

---

🔹 Deep Security & Compliance

31. How does AWS support PCI-DSS, HIPAA, SOC2?

32. What is defense in depth?

33. How do you rotate secrets automatically?

34. What is customer-managed vs AWS-managed KMS keys?

35. What is envelope encryption?

36. How do you prevent privilege escalation?

37. How do you audit IAM at scale?

38. What is security posture management?

39. What is zero-trust security in AWS?

40. How do you secure serverless applications?

---

🔹 Serverless at Scale

41. How does Lambda concurrency work?

42. What is reserved vs provisioned concurrency?

43. How do you handle Lambda throttling?

44. How do you design serverless workflows?

45. Step Functions vs EventBridge vs SQS?

46. How do you guarantee exactly-once processing?

47. What is dead-letter queue (DLQ)?

48. How do you handle poison messages?

49. How do you ensure idempotent Lambda execution?

50. How do you debug serverless systems?

---

🔹 Data Engineering & Analytics

51. How do you design a data lake on AWS?

52. What is Lambda architecture vs Kappa architecture?

53. How does Glue handle schema evolution?

54. How do you optimize Athena query cost?

55. How do you design real-time analytics pipelines?

56. Kinesis vs Kafka (MSK)?

57. How do you handle late-arriving data?

58. What is time-series data?

59. What is Amazon Timestream?

60. How do you manage data governance?

---

🔹 DevOps, Platform & SRE

61. How do you implement progressive delivery?

62. What is feature flagging?

63. How do you measure deployment health?

64. What is error budget?

65. What is mean time to recovery (MTTR)?

66. How do you automate rollbacks?

67. What is policy-as-code?

68. How does AWS Config Rules help compliance?

69. What is infrastructure drift?

70. How do you manage multi-region CI/CD?

---

🔹 Cost, Performance & Optimization

71. How do you design cost-aware architectures?

72. How do you decide compute vs serverless?

73. What is request-based pricing impact?

74. How do you optimize network egress cost?

75. How do you design SLA-aware systems?

76. What is performance isolation?

77. How do you handle noisy neighbor problem?

78. What is Graviton and why use it?

79. How do you benchmark AWS workloads?

80. What is capacity planning in cloud?

---

🔹 GenAI & Future AWS (Principal Level)

81. How do you design enterprise GenAI platforms?

82. How does Bedrock isolate customer data?

83. How do you do secure RAG at scale?

84. How do you evaluate foundation models?

85. What is prompt versioning?

86. How do you prevent prompt injection?

87. What is LLMOps?

88. How do you do A/B testing for prompts?

89. How do you control GenAI hallucinations?

90. How do you ensure regulatory compliance for GenAI?

---

🔹 Bar-Raiser / Behavioral + System Design

91. Design Netflix-like streaming platform on AWS.

92. Design Uber-like real-time tracking system.

93. Design high-throughput payment system.

94. Design global chat application.

95. Design secure healthcare data platform.

96. Design IoT ingestion pipeline.

97. Design AI search engine.

98. Design multi-tenant SaaS platform.

99. Design zero-downtime migration strategy.

100. Explain a production outage you handled.