Google Cloud Digital Leader Exam Practice Test Instant Access

Question 1

You are a cloud architect in a software solution provider company, one of the client that is a Na-tional Bank who wants to build an application that deals with transactions processing, and it needs a relational database with petabyte of scale dat

a. Which of the following Google Cloud Services will you use?

ACloud SQL

BCloud Bigtable

CCloud Spanner

DGoogle Cloud BigQuery

Answer : C

-Cloud Spanner is the online transaction processing solution that is relational and offers petabyte scalability. Cloud SQL is not designed for petabyte-scale data.

Question 2

A large organization is struggling to manage their cloud costs effectively. They want to increase vis-ibility into cloud costs. Which cost management approach should the organization use?

AEstablish a partnership between finance, technology, and business teams.

BAppoint a single person to monitor cloud spending across the organization.

CReview any cloud spending that exceeds the organization's error budget.

DIncrease monitoring of on-premises infrastructure and services.

Answer : A

Because cross-team partnerships are part of the visibility cost management strategy.

https://wa.aws.amazon.com/wat.question.COST_1.en.html

Question 3

An organization has had a data leak scare because one employee made a sensitive Cloud Storage bucket available to the public. Given the nature of the company's business, it is understood that there is never any reason to give the public direct access to any file. The security head wants to ensure that such an event never occurs again. How can you ensure this?

ARemove Edit access rights of all Cloud Storage buckets so that no user can make any edits.

BSet an organizational policy constraint to restrict bucket access set to the public.

CUse Cloud Scheduler to run a job at a specified interval to scan buckets. Any public permissions can be programmatically changed.

DWrite Cloud Functions code connected to Cloud Storage. Any changes will be notified to the function which can be used to reset the public access.

Answer : B

The straightforward way to set it is using Organizational Policy constraint. Any attempts to change the organizational setting will be rejected for any project and resource.

Reference link:

->https://cloud.google.com/resource-manager/docs/organization-policy/overview

->https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints

Question 4

Your organization needs to restrict access to a Cloud Storage bucket. Only employees who are based in Canada should be allowed to view the contents.

What is the most effective and efficient way to satisfy this requirement?

ADeploy the Cloud Storage bucket to a Google Cloud region in Canada

BConfigure Google Cloud Armor to allow access to the bucket only from IP addresses based in Canada

CGive each employee who is based in Canada access to the bucket

DCreate a group consisting of all Canada-based employees, and give the group access to the bucket

Answer : D

Because you can use your own private VPN to access the Canada-only bucket from anywhere in the world.

Question 5

The operating systems of some of your organization's virtual machines may have a security vulnerability.

How can your organization most effectively identify all virtual machines that do not have the latest security update?

AView the Security Command Center to identify virtual machines running vulnerable disk images

BView the Compliance Reports Manager to identify and download a recent PCI audit

CView the Security Command Center to identify virtual machines started more than 2 weeks ago

DView the Compliance Reports Manager to identify and download a recent SOC 1 audit

Answer : A

Security Health Analytics and Web Security Scanner detectors generate vulnerabilities findings that are available in Security Command Center. Your ability to view and edit findings is determined by the Identity and Access Management (IAM) roles and permissions you are assigned. For more information about IAM roles in Security Command Center.

Reference link:-

https://cloud.google.com/security-command-center/docs/concepts-vulnerabilities-findings

Question 6

What does Cloud Logging help an organization do?

AAnalyze live source code and log code updates.

BDeploy infrastructure as code.

CAnalyze logs and accelerate application troubleshooting.

DManage storage of custom VM images.

Answer : C

Question 7

One of your clients is in the retail sector. They have a small team supporting their operations and a small development team taking care of application development. They have heard of the benefits of machine learning, but they do not have the capacity to hire data scientists or the work to retain them. They have a team of analysts who works primarily on BigQuery and knows how to run SQL queries. They want to be able to get into the new age of machine learning and artificial intelligence. What options are available to run on Google Cloud?

AUse the popular open-source libraries SciPy and NumPy to create machine learn-ing models.

BUse the Unified AI Platform to create a custom TensorFlow model.

CUse BigQuery ML to create machine learning models using SQL queries.

DIntegrate the Cloud Vision API and the Cloud Speech API to create a custom mod-el that will suit the retail sector.

Answer : C

BigQuery ML allows you to create ML models using standard SQL queries. Those familiar with BigQuery and ML will be able to create ML models with just a basic understanding of machine learning.

https://cloud.google.com/bigquery-ml/docs/