AWS Certified Database - Specialty review

Review By: Emmanuel Koomson



Expiry Month


Expiry Year


Time taken to Prepare

14 Days

Resources Used

  • AWS Ramp-Up Guide: Databases, AWS Whitepapers and user guides for database offerings, Whizlabs Practice Test and AWS Training courses on Databases and Database Specialty Exam readiness course

Detailed Review Of Preparation


The AWS Database exam blueprint recommends that examinee’s have at least 5 years’ experience with database technologies and two years’ experience working with AWS. You should be familiar with open source SQL and NoSQL databases.

In addition, I advise you have at least AWS Associate Developer or DevOps Professional certificate before taking the exam. This would make it easier to answer questions on deployments and monitoring.


I went through all the material prescribed in the ramp up guide. These included courses on AWS training website, user guides for all AWS purpose built databases, whitepapers and AWS Databases blog posts. I also watched re: Invent videos on DynamoDB, Elasticache, QLDB, Redshift and DocumentDB.

As part of preparations, I also used practice tests and video courses on DynamoDB and Migration from Whizlabs. I wrapped it up with the practice exam from AWS (20 questions).

General Overview

RDS and Aurora are the most tested products on the exam. These products account for 50-60% of questions on the exam. You should know the architectures of both RDS and Aurora. Features that both share and those that supported by only Aurora. DynamoDB and DocumentDB may account for about 20% of the questions. All other purpose built database products account for the remaining questions.

Before you take the exam, you should know how the following services work on AWS: VPCs, Security groups, IAM, CloudWatch, Cloudformation, CloudTrail and S3.

Even though the exam is theoretical, experience with the purpose built database services on AWS should guarantee success.

Exam Domains

1 Workload Specific Database design

This section requires you to understand all AWS database offerings and their use cases.

You should consider the following for the exam:

·         One size does not fit all. There is a database solution for every type of workload. The exam tests you on choosing the right database for the given scenario.

·         RDS (5 engines), (PostgreSQL and MySQL), Aurora, Redshift, Elasticache (Redis and Memcached), DynamoDB, DocumentDB, Keyspaces, Neptune, Timestream, QLDB are the Database offerings tested on the exam.

·         The architectures of all the database offerings.  Understand how to implement disaster recovery and high availability when using these services.

·         Understand how these services are charged, their performance (latencies) and best practices in securing data.

Pro tip:

·         RDS and Neptune use the multi-AZ architecture.

·         Aurora and DocumentDB use the shared volume architecture. Aurora supports global databases, DocumentDB does not. Compute is separated from storage and hence both are scaled differently.

·         DynamoDB supports global multi-write (hence gives low latency reads and writes). Aurora Global databases support only one writer endpoint. Aurora Multi-Master databases are regional not global.

·         Aurora Serverless databases are best suited for development and can shut down when there are no reads or writes.

·         DynamoDB, Keyspaces and QLDB are serverless.

2 Deployment and Migration

 Consider the following for the exam:

·         How to use Cloud Formation for deployments. Understand drifts, stacks, stack sets and change sets.

·         You should be familiar with the roles DMS,SCT and WQF play in migration

·         You should know when to use native migration tools, their limitations and which tool to use for which migration task

·         How to migrate LOBs

·         You should know which databases support cloning and when to use Aurora read replica to migrate a database

·         You should be know how to validate migrated data.

·         When to use snowball or Direct connect

Pro Tip:

·         Oracle handles null and time zones differently from PostgreSQL.

·         DMS is used for online migration (slow but minimizes downtime), native migration tools are used for offline migration (quick but causes downtime). You can combine both native tools and DMS (CDC) for the best of both worlds.

3 Management and Operations

This section tests your ability to perform everyday database management activities.

You should know the following for the exam:

·         Automatic/continuous backups and manual backups

·         Backup and maintenance windows

·         Considerations for minor and major engine upgrades

·         How backups, copying/sharing snapshots and read replicas meet RTO and RPO objectives

·         Parameter Groups and Option groups (permanent and persistent options)

·          How to Secrets Manager works with Databases

·         When changes are applied – rebooting instances or maintenance windows. How to applying changes immediately.

·         When to use DAX and Elasticache

·         When changes are applied – rebooting instances or maintenance windows. How to applying changes immediately.

4 Monitoring and Troubleshooting

This section tests your ability use AWS services to monitor workloads and troubleshooting common database issues.

You should know the following for the exam:

·         CloudWatch, CloudWatch Logs, RDS Events, Performance Insights, CloudTrail , Enhanced Monitoring , CloudWatch Application Insights for .Net and SQL Server and Trusted Advisor

·         Basic troubleshooting for the database offerings

·         Best practices for each database engine.

·         Read about IOPS, Tuning queries, Secondary indexes, TTL, sharding, Read Replicas etc.

5 Security

You will find questions on securing database workloads on AWS.

You should know the following for the exam:

·         KMS – which services use AWS managed keys and CMKs. Disabled/Deleted keys and their impact on workloads. Key rotation


·         How IAM integrates with the various database products and how IAM DB Authentication works. Understand which services support fine-grained access control and those that do not

·         Data in Transit – How to enforce data encryption on each RDS engine. Data in transit for all other database offerings

·         VPC endpoints, VPN and Direct connect

·         Private subnets, NACLs and Security Groups

·         How to auditing works for different database products

·         Security controls supported by the different database engines

Links to Resources used

AWS Ramp-Up Guide: Databases

Exam Readiness: AWS Certified Database – Specialty

AWS DynamoDB Deepdive –Beginner to Intermediate ($5)

Database Migration to AWS Masterclass ($5)

Practice Tests - 145 questions ($20)


I did it in two weeks, you can do it too. All the best !!!


Benefits From Certification

  • I just did it for the giggles