Google PROFESSIONAL-CLOUD-DEVELOPER Online Practice Questions and Exam Preparation

Google PROFESSIONAL-CLOUD-DEVELOPER Online Questions & Answers

• Question 201:

  For this question, refer to the HipLocal case study.

  How should HipLocal redesign their architecture to ensure that the application scales to support a large increase in users?

  A. Use Google Kubernetes Engine (GKE) to run the application as a microservice. Run the MySQL database on a dedicated GKE node.
  B. Use multiple Compute Engine instances to run MySQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.
  C. Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.
  D. Use a Cloud Storage bucket to serve the application as a static website, and use another Cloud Storage bucket to store user state information.
  C. Use Memorystore to store session information and CloudSQL to store state information. Use a Google Cloud-managed load balancer to distribute the load between instances. Use managed instance groups for scaling.

• Question 202:

  Your team uses Cloud Storage for a video and image application that was recently migrated to Google Cloud. Following a viral surge, users are reporting application instability, coinciding with a 10x increase in HTTP 429 error codes from Cloud Storage APIs. You need to resolve the errors and establish a long-term solution. You want to ensure that the application remains stable if the load increases again in the future.

  What should you do?

  A. Optimize the application code to reduce unnecessary calls to Cloud Storage APIs to prevent HTTP 429 errors.
  B. Compress the video and images files to reduce their size, and minimize storage costs and bandwidth usage. Implement a custom throttling mechanism in the application that limits the number of concurrent API calls.
  C. Migrate all image and video data to Firestore. Replace the Cloud Storage APIs in the application code with the new Firestore database.
  D. Implement a retry strategy with exponential backoff for requests that encounter HTTP 429 errors.
  D. Implement a retry strategy with exponential backoff for requests that encounter HTTP 429 errors.

  ---

  Explanation

  https://blog.hubspot.com/website/http-error-429

• Question 203:

  You are responsible for improving the security of your Cloud Run services to protect these services against supply chain threats. You need to ensure that there are adequate security controls such as SLSA Level 3 builds for container images and non-falsifiable provenance for container images by using Google Cloud tools.

  What should you do?

  A. Ask developers to build container images locally and ensure strict version controls by using Container Registry.
  B. Use Cloud Build to build container images. Configure a Binary Authorization policy on the Cloud Run job.
  C. Use Cloud Deploy to generate authenticated and non-falsifiable build provenance for container images.
  D. Use Cloud Build to build container images. Use Cloud Scheduler to automate delivery of your applications to a series of target environments in a defined sequence.
  B. Use Cloud Build to build container images. Configure a Binary Authorization policy on the Cloud Run job.

  ---

  Explanation

  Cloud Build supports SLSA (Supply-chain Levels for Software Artifacts) Level 3 by providing verifiable, non-falsifiable provenance for container images. By configuring Binary Authorization on the Cloud Run job, you can enforce deploy-time policies that ensure only trusted, verified container images (with provenance) are deployed. This setup addresses both the security requirements for non-falsifiable provenance and adherence to supply chain best practices against threats.

  Other options, like using Container Registry or Cloud Deploy, do not directly provide the same level of provenance and control required to meet SLSA Level 3 and Binary Authorization standards for security in Cloud Run deployments.

• Question 204:

  You need to delete specific user records in BigQuery upon request.

  What should you use?

  A. Export and reload data
  B. DML DELETE statements
  C. Table snapshots
  D. Dataflow job
  B. DML DELETE statements

  ---

  Explanation

  BigQuery supports DML statements such as DELETE to modify or remove specific records while maintaining dataset integrity.

• Question 205:

  You are preparing to conduct a load test on your Cloud Run service by using JMeter. You need to orchestrate the steps and services to use for an effective load test and analysis. You want to follow Google-recommended practices.

  What should you do?

  A. Install JMeter on your local machine, create a log sink to BigQuery, and use Looker to analyze the results.
  B. Set up a Compute Engine instance, install JMeter on the instance, create a log sink to a Cloud Storage bucket, and use Looker Studio to analyze the results.
  C. Set up a Compute Engine instance, install JMeter on the instance, create a log sink to a Cloud Storage bucket, and use Looker to analyze the results.
  D. Set up a Compute Engine instance, install JMeter on the instance, create a log sink to BigQuery, and use Looker Studio to analyze the results.
  D. Set up a Compute Engine instance, install JMeter on the instance, create a log sink to BigQuery, and use Looker Studio to analyze the results.

  ---

  Explanation

  https://cloud.google.com/run/docs/about-load-testing

• Question 206:

  You are developing a new ecommerce website for your company. You want customers to receive a customized email notification when they place an order. You need to configure this email service while minimizing deployment effort.

  What should you do?

  A. Create a Cloud Run function that is triggered by a create type event in Firestore.
  B. Create an email-sending application hosted on Compute Engine that is invoked by an HTTP request.
  C. Create an email notification channel, and set up an alerting policy that is based on log metrics from a type event.create
  D. Use Pub/Sub to send an email when the orders/ API returns an HTTP response of 200 OK.
  A. Create a Cloud Run function that is triggered by a create type event in Firestore.

  ---

  Explanation

  Using a Cloud Function that triggers on a create event in Firestore provides a serverless, event-driven solution, minimizing deployment and infrastructure management. When a new order is created in Firestore, the Cloud Function is automatically triggered, allowing it to send a customized email notification to the customer. This approach requires minimal setup, scales automatically, and aligns with best practices for event-driven architectures.

  Other options like hosting an application on Compute Engine or setting up an alerting policy based on log metrics would require more configuration and management effort, while Pub/Sub with an HTTP response trigger lacks direct integration for event-based triggers from Firestore.

• Question 207:

  You have an HTTP Cloud Function that is called via POST. Each submission's request body has a flat, unnested JSON structure containing numeric and text data. After the Cloud Function completes, the collected data should be immediately available for ongoing and complex analytics by many users in parallel.

  How should you persist the submissions?

  A. Directly persist each POST request's JSON data into Datastore.
  B. Transform the POST request's JSON data, and stream it into BigQuery.
  C. Transform the POST request's JSON data, and store it in a regional Cloud SQL cluster.
  D. Persist each POST request's JSON data as an individual file within Cloud Storage, with the file name containing the request identifier.
  B. Transform the POST request's JSON data, and stream it into BigQuery.

• Question 208:

  You migrated some of your applications to Google Cloud. You are using a legacy monitoring platform deployed on-premises for both on-premises and cloud-deployed applications. You discover that your notification system is responding slowly to time-critical problems in the cloud applications.

  What should you do?

  A. Replace your monitoring platform with Cloud Monitoring.
  B. Install the Cloud Monitoring agent on your Compute Engine instances.
  C. Migrate some traffic back to your old platform. Perform A/B testing on the two platforms concurrently.
  D. Use Cloud Logging and Cloud Monitoring to capture logs, monitor, and send alerts. Send them to your existing platform.
  D. Use Cloud Logging and Cloud Monitoring to capture logs, monitor, and send alerts. Send them to your existing platform.

• Question 209:

  HipLocal is configuring their access controls.

  Which firewall configuration should they implement?

  A. Block all traffic on port 443.
  B. Allow all traffic into the network.
  C. Allow traffic on port 443 for a specific tag.
  D. Allow all traffic on port 443 into the network.
  C. Allow traffic on port 443 for a specific tag.

• Question 210:

  You plan to deploy a new application revision with a Deployment resource to GKE in production. The container might not work correctly. You want to minimize risk in case there are issues after deploying the revision. You want to follow Google-recommended practices.

  What should you do?

  A. Perform a rolling update with a PodDisruptionBudget of 80%.
  B. Perform a rolling update with a HorizontalPodAutoscaler scale-down policy value of 0.
  C. Convert the Deployment to a StatefulSet, and perform a rolling update with a PodDisruptionBudget of 80%.
  D. Convert the Deployment to a StatefulSet, and perform a rolling update with a scale-down policy value of 0.HorizontalPodAutoscaler
  A. Perform a rolling update with a PodDisruptionBudget of 80%.