Google Cloud Digital Leader Exam Practice Test

Page: 1 / 14
Total 411 questions
Question 1

An organization needs protection against distributed denial-of-service (DDoS) attacks. Which Google Cloud service should the organization use?



Answer : B

Google Cloud Armor is a service that provides protection against Distributed Denial-of-Service (DDoS) attacks. It offers a scalable web application firewall (WAF) that helps to defend against layer 3, 4, and 7 DDoS attacks, ensuring that applications remain available and responsive.

Option B: Google Cloud Armor is correct because it is specifically designed to provide protection against DDoS attacks.


Google Cloud Armor: DDoS Protection and WAF Features

Google Cloud Security: Overview of DDoS Protection Services

Question 2

Your client is a financial services company giving loans based on customer profiles. As part of the regulatory compliance, they have to collect a bunch of different documents with know your cus-tomer (KYC) information. They want to be able to process the information in these documents quickly and at scale. They want to integrate the chosen solution as quickly as possible. What are your options on Google Cloud?



Answer : C

Lending DocAI is a pre-packaged AI solution that speeds 'up the mortgage workflow processes to easily process loans and automate document data capture, while ensuring the accuracy and breadth of different documents (e.g., tax statements and asset documents).'

https://cloud.google.com/solutions/lending-doc-ai


Question 3

The government has ordered an audit of your company's dat

a. You have hired an external company to conduct the audit. They need to be able to review the data stored in your Cloud Storage buckets across eight projects. How would you grant them access?



Answer : B

Apply the Principle of Least Privilege and only provide read permissions on only the required buckets. No more, no less

https://cloud.google.com/storage/docs/access-control/iam-roles


Question 4

You are a program manager in a company and handling a project and you need to create a virtual machine on google cloud console that will be very simple to set up, by flipping a bit via command, API, or with developer console that gives you 30 seconds to shut down when you're preempted, allow you to save your work that also helps in the company budget upto 70-80% of less charges than the regular VMs.



Answer : B

Preemptible VMs have all these features

Simple configuration

Create a preemptible instance simply by flipping a bit via command, API, or developer console.

Easy extensibility

Attach GPUs and local SSDs to preemptible instances for additional performance and savings.

Graceful shutdown

Compute Engine gives you 30 seconds to shut down when you're preempted, letting you save your work in progress for later.

Large scale computing

Spin up as many instances as you need and turn them off when you're done. You only pay for what you use.

Quickly reclaim capacity

Managed instance groups automatically recreate your instances when they're preempted (if capacity is available).

Fixed pricing

Preemptible VMs have fixed pricing up to 80% off regular instances. They show up on your bill separately so you'll see just how much you're saving.


Question 5

Your customer is moving from AWS to Google Cloud. Data also needs to be moved. There is about 50TB of dat

a. On AWS, the data resides in an S3 bucket. It is going to be moved to Cloud Storage. Data is also being continuously generated on S3 prior to the cutover. It is preferable that this is also periodically transferred. What is the best way to move the data?



Answer : C

Storage Transfer Service provides options that make data transfers and synchronization easier. We can also schedule one-time transfer operations or recurring transfer operations.

Reference link-https://cloud.google.com/storage-transfer/docs/overview

Reference link-https://cloud.google.com/architecture/transferring-data-from-amazon-s3-to-cloud-storage-using-vpc-service-controls-and-storage-transfer-service


Question 6

You are storing sensitive information in a Cloud Storage bucket. For legal reasons, you need to be able to record all requests that read any of the stored dat

a. You want to make sure you comply with these requirements. What should you do?



Answer : B

Logged information

Your Google Cloud projects contain only the audit logs for resources that are directly within the Cloud project. Other Google Cloud resources, such as folders, organizations, and billing accounts, contain the audit logs for the entity itself.

Reference link-https://cloud.google.com/storage/docs/audit-logging


Question 7

An organization wants to measure everything as part of its new DevOps philosophy. What should the organization measure?



Page:    1 / 14   
Total 411 questions