Cloud Service ModelsIaaS, PaaS, SaaS, FaaS; shared responsibility modelMajor Cloud PlatformsAWS, Azure, GCP core services and global footprint comparisonComputeEC2/VMs, Lambda/Functions, ECS/ACI, Fargate, App ServiceStorageObject (S3/Blob), block (EBS), file (EFS/Azure Files) storageCloud NetworkingVPC, subnets, route tables, NAT gateway, VPN, Direct Connect, peeringIdentity & Access (IAM)IAM roles/policies, Managed Identities, service accounts, least-privilegeSecrets & Key ManagementAWS Secrets Manager, Azure Key Vault, HashiCorp Vault, KMSCloud Security ServicesWAF, Shield/DDoS Protection, GuardDuty, Security Hub, Defender for CloudCloud ObservabilityCloudWatch, Azure Monitor, Cloud Logging, X-Ray, Application InsightsInfrastructure as CodeTerraform, CloudFormation, Pulumi, Bicep; state management, modulesContainerization (Docker)Docker images, layers, multi-stage builds, registries (ECR, ACR, GCR)Kubernetes (K8s)Pods, deployments, services, ingress, HPA, VPA, operatorsService MeshIstio, Linkerd; mTLS, traffic management, observability, policy enforcementGitOpsArgoCD, Flux; declarative infrastructure, drift detection, reconciliation loopsImmutable InfrastructureReplace-not-patch philosophy, golden AMIs, PackerMulti-Cloud & HybridLatency, data gravity, egress costs, governance challengesCloud Cost ManagementFinOps maturity model, spot instances, savings plans, reserved capacityLanding Zone & GovernanceAccount/subscription structure, guardrails, SCPs, blueprints