Practice Free Cloud-Digital-Leader Exam Online Questions
Which of the following is/are core storage options available on the Google Cloud Platform?
- A . Cloud Storage and Cloud Data Store
- B . Cloud Spanner
- C . Cloud SQL and Google Big Table
- D . All of the above
D
Explanation:
Google Cloud Platform has other storage options to meet your needs for structured, unstructured, transactional and relational data. Core storage options: Cloud Storage, Cloud SQL, Cloud Spanner, Cloud Data Store and Google Big Table. Depending on your application, you might want to use one or several of these services to get the job done.
How does a least privilege resource access model contribute to cloud security?
- A . Google is responsible for determining access to cloud resources.
- B . Employees may only access on-premises software with special permission.
- C . Only managers and other senior employees have cloud resource access.
- D . Employees only have access to the cloud resources necessary for their job.
D
Explanation:
This is the definition of a least privilege model.
A supporting principle that helps organizations achieve these goals is the principle of least privilege. The principle of least privilege addresses access control and states that an individual should have only the minimum access privileges necessary to perform a specific job or task and nothing more
How does a least privilege resource access model contribute to cloud security?
- A . Google is responsible for determining access to cloud resources.
- B . Employees may only access on-premises software with special permission.
- C . Only managers and other senior employees have cloud resource access.
- D . Employees only have access to the cloud resources necessary for their job.
D
Explanation:
This is the definition of a least privilege model.
A supporting principle that helps organizations achieve these goals is the principle of least privilege. The principle of least privilege addresses access control and states that an individual should have only the minimum access privileges necessary to perform a specific job or task and nothing more
Your team is publishing research results and needs to make large amounts of data available to other researchers within the professional community and the public at minimum cost.
How should you host the data?
- A . Use a Cloud Storage bucket and enable "Requester Pays.’
- B . Use a Cloud Storage bucket and provide Signed URLs for the data files.
- C . Use a Cloud Storage bucket and set up a Cloud Interconnect connection to allow access to the data.
- D . Host the data on-premises. and set up a Cloud Interconnect connection to allow access to the
data.
A
Explanation:
Enabling Requester Pays is useful, for example, if you have a lot of data you want to make available to users, but you don’t want to be charged for their access to that data.
Reference link- https://cloud.google.com/storage/docs/requester-pays
An organization wants to upskill their IT staff.
How can they do this in a transformational way?
- A . Prioritize training current employees instead of hiring new recruits with cloud experience.
- B . Prioritize giving privileged access to third-party partners and contractors to fill IT knowledge gaps.
- C . Create a culture of self-motivated, isolated learning with official training materials.
- D . Create a culture of continuous peer-to-peer learning with official training materials.
Your team is using BigQuery as your central data warehouse. You are running a certain workload that you’ve run frequently over the last few days. It is a short, high capacity ana-lytics workload.
Which of the following would be an appropriate pricing model to use?
- A . There is no need for any pricing model the first 1 TB of query data processed per month is free.
- B . On-demand pricing
- C . Flex Slots
- D . Flat-rate reservations
C
Explanation:
Option A is Correct- BigQuery Flex Slots for cyclical workloads that require extra capacity, or for workloads that need to process a lot of data in a short time, and so would be less expensive to run using reserved slots for a short time.
A partner of yours used to have their own private data center. Your company was already on Google Cloud and now they have also moved to Google Cloud. You are investigating whether there are ways to collaborate better or shared services.
What would be one good option to consider?
- A . Use Private Service Access within Google Cloud.
- B . Use VPC Peering to share resources privately between your two organizations.
- C . Use public IP addresses as before. It will automatically be routed internally only.
- D . Use VPC Shared Networks to share common resources.
B
Explanation:
VPC Network Peering allows internal IP address connectivity across two Virtual Private Cloud (VPC) networks regardless of whether they belong to the same project or the same organization.
-> Shared VPC is only within an organization – it allows an organization to connect resources from multiple projects to a common Virtual Private Cloud (VPC) network, so that they can communicate with each other securely and efficiently using internal IPs from that network. -> Private Google Access is only to access Google APIs and services
Reference:
-> https://cloud.google.com/vpc/docs/vpc-peering
-> https://cloud.google.com/vpc/docs/private-google-access
-> https://cloud.google.com/vpc/docs/shared-vpc
An organization is altering their gaming product so that it is compatible with cloud technology.
What can they expect when moving from traditional technology to cloud technology?
- A . No change to existing responsibilities
- B . A shift toward OpEx
- C . A shift toward using structured data
- D . Increased hardware maintenance
Your customer is moving to Google Cloud. They have many teams, each working on many projects.
How should they organize resources?
- A . Let each team have one shared Folder with multiple Projects within it so that there is a separation of concerns.
- B . Let each Project have one Folder so that there is a clear separation of concerns.
- C . Let each team have an Organization so that they can entirely manage themselves with their own identity.
- D . Let each team have one shared Project so that it is easy to manage.
A
Explanation:
The recommended approach is to have folders corresponding to teams/departments and they manage the projects within that.
-> Sharing a single project will cause a conflict of resources, billing, concerns, etc.
-> One folder per project is unnecessary overuse of abstraction/grouping.
-> Teams and projects in a company should ideally be centrally managed in a single Organization.
A client is currently running software on their on-premise systems that is bound by a certain type of license. They are allowed to run the software on virtualized machines. However, they cannot run them on virtualized machines that are shared by two different companies, teams, or projects.
What option do they have on Google Cloud?
- A . Google Cloud is a public cloud accessed by multiple customers.
- B . Allocate a Bare Metal machine.
- C . Setup exclusive login to the VM with self-generated security keys.
- D . Allocate sole-tenant nodes
D
Explanation:
Sole-tenancy lets you have exclusive access to a sole-tenant node, which is a physical Compute Engine server that is dedicated to hosting only your project’s VMs. Use sole-tenant nodes to keep your VMs physically separated from VMs in other projects, or to group your VMs together on the same host hardware.
https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes