Advanced AWS DevOps Interview Questions and Answers
1. What is Blue-Green deployment in AWS?
It uses two environments (blue and green). Traffic is switched using ALB or Route53 to avoid downtime.
2. What is Canary deployment in AWS?
Deploying new version to a small percentage of users using weighted routing in ALB or Route53.
3. What is AWS CodePipeline?
A CI/CD service that automates build, test and deploy stages.
4. Difference between CodeBuild and CodeDeploy?
CodeBuild builds code, CodeDeploy deploys code to EC2, ECS or Lambda.
5. What is AWS EKS?
Managed Kubernetes service on AWS.
6. What is AWS ECS?
Container orchestration service using Docker containers.
7. How do you secure secrets in AWS?
Use AWS Secrets Manager or Parameter Store with IAM roles.
8. What is IAM role vs IAM user?
Role is for services and temporary access, user is for human access.
9. What is VPC peering?
Connecting two VPCs privately using AWS network.
10. What is Transit Gateway?
Central hub to connect multiple VPCs and on-prem networks.
11. What is Auto Scaling Group?
Automatically increases or decreases EC2 instances based on load.
12. What is AWS CloudFormation?
Infrastructure as Code service to create AWS resources using templates.
13. What is Terraform vs CloudFormation?
Terraform is multi-cloud, CloudFormation is AWS-native.
14. What is AWS Lambda versioning?
Allows managing multiple versions of Lambda functions for deployment.
15. What is AWS Step Functions?
Service to orchestrate workflows between AWS services.
16. What is AWS CloudWatch?
Monitoring and logging service for AWS resources.
17. What is CloudWatch Alarm?
Triggers actions based on metric thresholds.
18. What is AWS X-Ray?
Tracing service to analyze microservice requests.
19. What is AWS Shield?
DDoS protection service.
20. What is AWS WAF?
Web Application Firewall for filtering HTTP traffic.
21. What is Multi-AZ deployment?
Running resources in multiple availability zones for high availability.
22. What is RDS Read Replica?
Database replica used for read scaling and DR.
23. What is S3 lifecycle policy?
Automatically moves objects to cheaper storage classes.
24. What is AWS Backup?
Centralized backup service for AWS resources.
25. What is AWS Elastic Beanstalk?
Platform as a Service for deploying applications.
26. What is AWS Fargate?
Serverless compute for containers.
27. What is AWS Organizations?
Manage multiple AWS accounts centrally.
28. What is AWS Control Tower?
Automates multi-account setup with best practices.
29. What is Cost Optimization in AWS?
Using right instance types, autoscaling, spot instances and storage tiers.
30. What is Infrastructure Drift?
Difference between deployed infrastructure and IaC definition.
31. What is AWS CodeArtifact?
Artifact repository service for packages.
32. What is AWS EventBridge?
Event-driven service to trigger workflows.
33. What is Zero Trust architecture?
No system is trusted by default; access is always verified.
34. What is Hybrid cloud?
Using on-prem and AWS together.
35. What is Multi-region deployment?
Deploying application in more than one AWS region for DR and performance.
36. What is AWS Config?
Tracks configuration changes and compliance.
37. What is AWS GuardDuty?
Threat detection service using logs and AI.
38. What is AWS Inspector?
Security vulnerability assessment service.
39. What is Blue/Green for Lambda?
Use aliases and weighted traffic shifting.
40. Why AWS for DevOps?
It provides scalable, secure, automated CI/CD and monitoring services.
Source: sureshtechlabs.com