AWS Security ChangesHomeSearch

AWS aws-certification documentation change

Service: aws-certification · 2026-06-28 · Documentation low

File: aws-certification/latest/sysops-administrator-associate-03/sysops-administrator-associate-03-domain4.md

Summary

Added punctuation consistency and expanded descriptions of security skills. Enhanced Skill 4.1.3 with multi-account strategy examples, Skill 4.1.5 with continuous monitoring details, and Skill 4.2.5 with additional security service examples.

Security assessment

Changes improve documentation of existing security features (IAM, encryption, monitoring tools) but don't address any specific vulnerability. Added examples (IAM Identity Center, AWS Config conformance packs, AWS Security Agent) enhance security documentation without indicating a security incident response.

Diff

diff --git a/aws-certification/latest/sysops-administrator-associate-03/sysops-administrator-associate-03-domain4.md b/aws-certification/latest/sysops-administrator-associate-03/sysops-administrator-associate-03-domain4.md
index bc2ef28fb..63ed6bac4 100644
--- a//aws-certification/latest/sysops-administrator-associate-03/sysops-administrator-associate-03-domain4.md
+++ b//aws-certification/latest/sysops-administrator-associate-03/sysops-administrator-associate-03-domain4.md
@@ -7 +7 @@
-Task 4.1: Implement and manage security and compliance tools and policiesTask 4.2: Implement strategies to protect data and infrastructure
+Task 4.1: Implement and manage security and compliance tools and policies.Task 4.2: Implement strategies to protect data and infrastructure.
@@ -13 +13 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Task 4.1: Implement and manage security and compliance tools and policies
+  * Task 4.1: Implement and manage security and compliance tools and policies.
@@ -15 +15 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Task 4.2: Implement strategies to protect data and infrastructure
+  * Task 4.2: Implement strategies to protect data and infrastructure.
@@ -20 +20 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-## Task 4.1: Implement and manage security and compliance tools and policies
+## Task 4.1: Implement and manage security and compliance tools and policies.
@@ -22 +22 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.1.1: Implement AWS Identity and Access Management (IAM) features (for example, password policies, multi-factor authentication [MFA], roles, federated identity, resource policies, policy conditions)
+  * Skill 4.1.1: Implement IAM features (for example, password policies, multi-factor authentication [MFA], roles, federated identity, resource policies, policy conditions).
@@ -24 +24 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.1.2: Troubleshoot and audit access issues by using AWS tools (for example, AWS CloudTrail, IAM Access Analyzer, IAM policy simulator)
+  * Skill 4.1.2: Troubleshoot and audit access issues by using AWS tools (for example, CloudTrail, IAM Access Analyzer, IAM policy simulator).
@@ -26 +26 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.1.3: Implement multi-account strategies securely
+  * Skill 4.1.3: Implement multi-account strategies securely (for example, AWS Organizations, service control policies, IAM Identity Center).
@@ -28 +28 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.1.4: Implement remediation based on the results of AWS Trusted Advisor security checks
+  * Skill 4.1.4: Implement remediation based on the results of AWS Trusted Advisor security checks.
@@ -30 +30 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.1.5: Enforce compliance requirements (for example, AWS Region and service selections)
+  * Skill 4.1.5: Enforce compliance requirements and continuous monitoring (for example, Region and service selections, AWS Config conformance packs).
@@ -35 +35 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-## Task 4.2: Implement strategies to protect data and infrastructure
+## Task 4.2: Implement strategies to protect data and infrastructure.
@@ -37 +37 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.2.1: Implement and enforce a data classification scheme
+  * Skill 4.2.1: Implement and enforce a data classification scheme.
@@ -39 +39 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.2.2: Implement, configure, and troubleshoot encryption at rest (for example, AWS Key Management Service [AWS KMS])
+  * Skill 4.2.2: Implement, configure, and troubleshoot encryption at rest (for example, AWS KMS).
@@ -41 +41 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.2.3: Implement, configure, and troubleshoot encryption in transit (for example, AWS Certificate Manager [ACM])
+  * Skill 4.2.3: Implement, configure, and troubleshoot encryption in transit (for example, AWS Certificate Manager [ACM]).
@@ -43 +43 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.2.4: Securely store secrets by using AWS services
+  * Skill 4.2.4: Securely store secrets by using AWS services.
@@ -45 +45 @@ Task 4.1: Implement and manage security and compliance tools and policiesTask 4.
-  * Skill 4.2.5: Configure reports and remediate findings from AWS services (for example, AWS Security Hub, Amazon GuardDuty, AWS Config, Amazon Inspector)
+  * Skill 4.2.5: Configure reports and remediate findings from AWS services (for example, AWS Security Hub, Amazon GuardDuty, AWS Config, Amazon Inspector, AWS Security Agent).