Learning Path Beginner Aws AWS Cloud Engineer

AWS Cloud Engineer Learning Path

A complete beginner-to-job-ready roadmap for becoming an AWS Cloud Engineer. Covers core services, architecture, security, and the Solutions Architect Associate certification.

Path Goal

By the end of this path you will be able to architect, deploy, and manage scalable AWS infrastructure — and be fully prepared for the AWS Solutions Architect Associate (SAA-C03) exam.

8
Milestones
12–16 weeks
Duration
5
Projects
100%
Free
January 20, 2025 AWS Cloud Engineer
aws cloud ec2 s3 vpc iam solutions-architect
AWS Beginner
AWS Cloud Engineer Learning Path
AWS Cloud Engineer · 12–16 weeks

Click a milestone to see tools, technologies, and resources

0% explored

Select a station to explore tools and resources

0% explored
roadmap.sh-style view
Click any topic or milestone card for free & premium resources
What You'll Achieve
  • Pass the AWS Solutions Architect Associate (SAA-C03) exam
  • Architect multi-tier, highly available systems on AWS
  • Write CloudFormation / Terraform templates to automate infra
  • Implement IAM best practices and VPC security controls
  • Monitor AWS workloads with CloudWatch, alarms, and dashboards
  • Confidently deploy and manage production AWS environments

Who Is This Path For?

This path is designed for complete beginners who want to break into cloud computing as an AWS engineer. If you know what a server is and have used the internet, you have everything you need to start.

By following this roadmap you will progressively build real skills — not just watch videos. Each milestone has hands-on tasks you complete in a live AWS account.

Milestone 1 — Cloud Fundamentals

Start here. Understand why the cloud exists and what problem it solves.

Topics:

  • What is cloud computing? On-premise vs Cloud
  • IaaS, PaaS, SaaS — real examples for each
  • AWS Global Infrastructure — Regions, AZs, Edge Locations
  • Shared Responsibility Model
  • Create your AWS Free Tier account

Resources:

Hands-On Task: Create a free account, set up MFA on root, create your first IAM user, and explore the AWS Console for 30 minutes.

Milestone 2 — Core Compute (EC2)

EC2 is the backbone of AWS. Master it thoroughly.

Topics:

  • EC2 instance types (t3, m5, c5 — what to use when)
  • AMIs, Key Pairs, User Data scripts
  • Security Groups vs NACLs
  • Elastic IPs, Placement Groups
  • Auto Scaling Groups + Launch Templates
  • Elastic Load Balancers (ALB vs NLB)

Hands-On Task: Launch an EC2 instance, install Nginx via User Data, attach an EIP, and put it behind an ALB.

Milestone 3 — Storage & Databases

Topics:

  • S3: buckets, versioning, lifecycle, storage classes (Standard, IA, Glacier)
  • S3 presigned URLs, bucket policies, CORS
  • EBS volumes — types (gp3, io2), snapshots, encryption
  • EFS — shared file system for EC2
  • RDS — Multi-AZ, Read Replicas, automated backups
  • DynamoDB — partition keys, GSIs, on-demand vs provisioned

Hands-On Task: Host a static website on S3 + CloudFront. Set up an RDS MySQL instance in a private subnet.

Milestone 4 — Networking Deep Dive (VPC)

The most important topic for any AWS architect.

Topics:

  • VPC CIDR blocks, subnets (public vs private)
  • Internet Gateway, NAT Gateway, NAT Instance
  • Route Tables and subnet associations
  • VPC Peering, Transit Gateway
  • VPN and Direct Connect (concepts)
  • AWS PrivateLink and VPC Endpoints

Hands-On Task: Build a custom VPC from scratch — public and private subnets across 2 AZs, NAT gateway, and deploy an EC2 in each.

Milestone 5 — Identity & Security (IAM)

Security is not optional. This milestone sets you apart.

Topics:

  • IAM Users, Groups, Roles, and Policies
  • Inline vs Managed policies
  • STS and AssumeRole
  • Instance Profiles for EC2
  • MFA enforcement, password policies
  • AWS Organizations and SCPs
  • AWS Secrets Manager vs Parameter Store

Hands-On Task: Create a cross-account role, configure an EC2 instance profile, and write a least-privilege S3 policy.

Milestone 6 — Monitoring, Logging & Cost Control

Topics:

  • CloudWatch Metrics, Alarms, Dashboards
  • CloudWatch Logs + Log Insights queries
  • CloudTrail — who did what, when
  • AWS Config — compliance rules
  • AWS Budgets + Cost Explorer
  • Trusted Advisor checks

Hands-On Task: Create a CloudWatch alarm for CPU > 80% on an EC2, ship application logs, and set a budget alert for $10/month.

Milestone 7 — Infrastructure as Code

Stop clicking the console. Automate everything.

Topics:

  • CloudFormation — templates, stacks, change sets
  • CloudFormation parameters, outputs, mappings
  • Introduction to Terraform on AWS
  • AWS CDK concepts (overview)
  • Best practices — idempotency, modular stacks

Hands-On Task: Write a CloudFormation template that provisions a VPC + EC2 + RDS stack in one command. Then replicate it with Terraform.

Milestone 8 — Exam Prep & Capstone Project

SAA-C03 Exam Prep:

  • Full-length practice exams (Tutorials Dojo, AWS Official)
  • Review weak areas — focus on VPC, IAM, S3, HA patterns
  • Understand why answers are correct, not just memorise

Capstone Project: Deploy a production-grade 3-tier web application:

  • Frontend on S3 + CloudFront
  • API on EC2 behind an ALB in an Auto Scaling Group
  • Database on RDS Multi-AZ in a private subnet
  • All provisioned via CloudFormation
  • Monitored with CloudWatch dashboards and alarms

Help Improve This Learning Path

Have a resource, project idea, or milestone suggestion? Submit it!

Open Google Form