Free Google Professional-Cloud-Developer Exam Questions

Question 1

The "Master" dataset in BigQuery contains employee travel and expenses information, which is classified by department. To ensure that employees can only access information related to their respective department, a security framework needs to be implemented with minimal steps.

What actions do you need to take?

A : Create a separate dataset for each department. Create a view with a WHERE clause to select records from a specific dataset for that department. Authorize the view to access records from the Master dataset. Give employees permission to the department-specific dataset.

B : Create a separate dataset for each department. Create a data pipeline to copy relevant information from the Master dataset to the department-specific dataset. Give employees permission to the department-specific dataset.

C : Create a Master dataset. Create a separate view for each department in the Master dataset. Give employees access to their department's view.

D : Create a Master dataset. Create a separate table for each department in the Master dataset. Give employees access to their department's table.

Answer: C

Question 2

This is a case study. Case studies are not timed separately. You can use as much exam time as you would like

to complete each case. However, there may be additional case studies and sections on this exam. You must

manage your time to ensure that you are able to complete all questions included on this exam in the time

provided.

To answer the questions included in a case study, you will need to reference information that is provided in the

case study. Case studies might contain exhibits and other resources that provide more information about the

scenario that is described in the case study. Each question is independent of the other questions in this case

study.

At the end of this case study, a review screen will appear. This screen allows you to review your answers and to

make changes before you move to the next section of the exam. After you begin a new section, you cannot

return to this section.

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore

the content of the case study before you answer the questions. Clicking these buttons displays information such

as business requirements, existing environment, and problem statements. If the case study has an All

Information tab, note that the information displayed is identical to the information displayed on the subsequent

tabs. When you are ready to answer a question, click the Question button to return to the question.

Company Overview

HipLocal is a community application designed to facilitate communication between people in close proximity. It

is used for event planning and organizing sporting events, and for businesses to connect with their local

communities. HipLocal launched recently in a few neighborhoods in Dallas and is rapidly growing into a global

phenomenon. Its unique style of hyper-local community communication and business outreach is in demand

around the world.

Executive Statement

We are the number one local community app; it's time to take our local community services global. Our venture

capital investors want to see rapid growth and the same great experience for new local and virtual communities

that come online, whether their members are 10 or 10000 miles away from each other.

Solution Concept

HipLocal wants to expand their existing service, with updated functionality, in new regions to better serve their

global customers. They want to hire and train a new team to support these regions in their time zones. They will

need to ensure that the application scales smoothly and provides clear uptime data.

Existing Technical Environment

HipLocal's environment is a mix of on-premises hardware and infrastructure running in Google Cloud Platform.

The HipLocal team understands their application well, but has limited experience in global scale applications.

Their existing technical environment is as follows:

• Existing APIs run on Compute Engine virtual machine instances hosted in GCP.

• State is stored in a single instance MySQL database in GCP.

• Data is exported to an on-premises Teradata/Vertica data warehouse.

• Data analytics is performed in an on-premises Hadoop environment.

• The application has no logging.

• There are basic indicators of uptime; alerts are frequently fired when the APIs are unresponsive.

Business Requirements

HipLocal's investors want to expand their footprint and support the increase in demand they are seeing. Their

requirements are:

• Expand availability of the application to new regions.

• Increase the number of concurrent users that can be supported.

• Ensure a consistent experience for users when they travel to different regions.

• Obtain user activity metrics to better understand how to monetize their product.

• Ensure compliance with regulations in the new regions (for example, GDPR).

• Reduce infrastructure management time and cost.

• Adopt the Google-recommended practices for cloud computing.

Technical Requirements

• The application and backend must provide usage metrics and monitoring.

• APIs require strong authentication and authorization.

• Logging must be increased, and data should be stored in a cloud analytics platform.

• Move to serverless architecture to facilitate elastic scaling.

• Provide authorized access to internal apps in a secure manner.

HipLocal has connected their Hadoop infrastructure to GCP using Cloud Interconnect in order to query data

stored on persistent disks.

Which IP strategy should they use?

A : eate manual subnets.

B : eate an auto mode subnet.

C : eate multiple peered VPCs.

D : ovision a single instance for NAT.

Answer: A

Question 3

Your team is responsible for maintaining an application that aggregates news articles from many different sources. Your monitoring dashboard contains publicly accessible real-time reports and runs on a Compute Engine instance as a web application. External stakeholders and analysts need to access these reports via a secure channel without authentication. How should you configure this secure channel?

A : a public IP address to the instance. Use the service account key of the instance to encrypt the traffic

B : Cloud Scheduler to trigger Cloud Build every hour to create an export from the reports. Store the reports in a public Cloud Storage bucket.

C : an HTTP(S) load balancer in front of the monitoring dashboard. Configure Identity-Aware Proxy to secure the communication channel.

D : Add an HTTP(S) load balancer in front of the monitoring dashboard. Set up a Google-managed SSL certificate on the load balancer for traffic encryption.

Answer: B

Question 4

The task at hand involves managing a sizable Google Kubernetes Engine (GKE) cluster. The current setup sees several application teams sharing a namespace to develop microservices for the cluster. The organization intends to bring on board additional teams for creating microservices. The aim is to set up multiple environments that guarantee optimal performance and security of each team's work. Furthermore, the objective is to minimize expenses while adhering to Google's best practices.

What actions do you need to take?

A : Create new role-based access controls (RBAC) for each team in the existing cluster, and define resource quotas.

B : Create a new namespace for each team in the existing cluster, and define resource quotas.

C : Create a new GKE cluster for each team.

D : Create a new namespace for each environment in the existing cluster, and define resource quotas.

Answer: A

Question 5

A CI/CD pipeline is being developed, which includes a version control system, Cloud Build, and Container Registry. Whenever a new tag is added to the repository, a Cloud Build job is activated. This job performs unit tests on the latest code, creates a new Docker container image, and saves it to the Container Registry. The final phase of the pipeline is to deploy the updated container to the production Google Kubernetes Engine (GKE) cluster.

What options are available to choose a tool and deployment strategy that satisfies these conditions:

• No downtime should be experienced

• Automated testing should be comprehensive

• Testing before release should be possible

• Quick rollbacks should be supported

A : Trigger a Spinnaker pipeline configured as an A/B test of your new code and, if successful, deploy the container to production.

B : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a canary test.

C : Trigger a Cloud Build job that utilizes Kubernetes CLI tools to deploy your new container to your GKE cluster, allowing for a shadow test.

D : Trigger a Spinnaker pipeline configured as a canary test of your new code and, if successful, deploy the container to production.

Answer: C