Cloud/ AWS / AWS Certified AI Practitioner (AIF-C01) / Securing Generative AI & AIF-C01 Exam Domains — Final Prep Step 5

AWS Amazon Web Services Foundational Step 5 of 5 106 guides · updated 2026

Hands-on guides to compute, storage, databases, networking, and serverless on the world's most widely adopted cloud platform.

Step 5 — Security & Exam Prep

You’ve covered the concepts. Now let’s cover the two things that actually decide whether you pass: locking down generative AI workloads the way AWS expects, and knowing exactly how the exam itself is put together so nothing on test day catches you off guard.


Data Privacy: What Happens to Your Prompt

A question worth asking before you send anything to a foundation model: where does this data go, and who else can see it? For Bedrock specifically, AWS’s stated model is that your prompts and the model’s responses are not used to train the underlying foundation models, and your content isn’t shared with the model provider beyond what’s needed to process your request. That distinction — your data isn’t training material for someone else’s future model — is exactly the kind of detail the exam likes to test, because it’s the difference between a compliance-safe design and one that leaks proprietary information into a third party’s future training set.

Practically, this means a few habits matter regardless of which foundation model you’re calling:


IAM for Bedrock: Least Privilege Still Applies

Generative AI doesn’t get a pass on IAM fundamentals — if anything, it raises the stakes, because a single overly broad permission can let a compromised application invoke expensive models, exfiltrate data through a Knowledge Base, or execute an unintended action through an Agent.

IAM Policy for a Bedrock-Backed Application
┌─────────────────────────────────────────────────────┐
│ Action: bedrock:InvokeModel │
│ Resource: specific model ARN only │
│ (not "*" across every model) │
│ │
│ Action: bedrock:Retrieve │
│ Resource: specific Knowledge Base ARN only │
│ │
│ Condition: restrict by VPC endpoint, source IP, │
│ or request tag as appropriate │
└─────────────────────────────────────────────────────┘

A few specifics worth locking in:


Compliance Considerations Layered on Top

AI-specific compliance isn’t a separate universe from general AWS compliance — it’s the same shared responsibility thinking, applied to a new kind of workload. A few things the exam expects you to connect:


The AIF-C01 Exam Itself: Domains and Weighting

AWS structures the AI Practitioner exam around four content domains, and the weighting tells you where to spend your study hours. Treat this table as your study-time budget, not just trivia:

DomainApproximate WeightWhat It Covers
Fundamentals of AI and ML~20%Core concepts from Step 1 — AI/ML/DL relationships, learning paradigms, ML lifecycle
Fundamentals of Generative AI~24%Foundation models, prompting, tokens, embeddings — Step 2 territory
Applications of Foundation Models~28%Bedrock, Agents, Knowledge Bases, Amazon Q, choosing the right AI service — Step 3 territory
Guidelines for Responsible AI~14%Fairness, bias, explainability, Clarify, Guardrails — Step 4 territory
Security, Compliance, and Governance for AI~14%IAM, encryption, compliance, governance — this step

Notice that “Applications of Foundation Models” carries the heaviest weight — nearly three in ten questions touch that territory. If your study time is uneven, that’s the domain to over-invest in, particularly the distinctions between Bedrock, Amazon Q, and the pre-built AI services covered in Step 3.


A Realistic Study Plan

Week 1 ─── Steps 1–2: fundamentals + generative AI concepts
(read, then explain each concept out loud without notes)
Week 2 ─── Step 3: Bedrock deep dive
(build one small Bedrock + Knowledge Base example if you can —
hands-on time cements the RAG flow better than reading about it)
Week 3 ─── Steps 4–5: responsible AI, security, governance
(this is where most candidates under-prepare — don't skip it)
Week 4 ─── Practice exams + targeted review
(retake missed-domain questions, don't just re-read notes)

Four weeks is a reasonable pace for someone with general tech background but limited hands-on ML experience. If you already work with SageMaker or Bedrock day to day, you can likely compress this significantly.


Common Traps at the Foundational Level

This is a foundational exam, which means the traps are rarely about obscure trivia — they’re about mixing up adjacent concepts under time pressure. Watch for these specifically:


Exam Focus: What Questions Test From This Step