1. Home
  2. Google
  3. PROFESSIONAL-CLOUD-DEVELOPER

Google PROFESSIONAL-CLOUD-DEVELOPER Online Practice Questions and Exam Preparation

PROFESSIONAL-CLOUD-DEVELOPER Exam Details

  • Exam Code
    :PROFESSIONAL-CLOUD-DEVELOPER
  • Exam Name
    :Professional Cloud Developer
  • Certification
    :Google Certifications
  • Vendor
    :Google
  • Total Questions
    :405 Q&As
  • Last Updated
    :May 24, 2026

Google PROFESSIONAL-CLOUD-DEVELOPER Online Questions & Answers

  • Question 291:

    Your organization has recently begun an initiative to replatform their legacy applications onto Google Kubernetes Engine. You need to decompose a monolithic application into microservices. Multiple instances have read and write access to a configuration file, which is stored on a shared file system. You want to minimize the effort required to manage this transition, and you want to avoid rewriting the application code.

    What should you do?

    A. Create a new Cloud Storage bucket, and mount it via FUSE in the container.
    B. Create a new persistent disk, and mount the volume as a shared PersistentVolume.
    C. Create a new Filestore instance, and mount the volume as an NFS PersistentVolume.
    D. Create a new ConfigMap and volumeMount to store the contents of the configuration file.

  • Question 292:

    You manage your company's ecommerce platform's payment system, which runs on Google Cloud. Your company must retain user logs for 1 year for internal auditing purposes and for 3 years to meet compliance requirements. You need to store new user logs on Google Cloud to minimize on-premises storage usage and ensure that they are easily searchable. You want to minimize effort while ensuring that the logs are stored correctly.

    What should you do?

    A. Store the logs in a Cloud Storage bucket with bucket lock turned on.
    B. Store the logs in a Cloud Storage bucket with a 3-year retention period.
    C. Store the logs in Cloud Logging as custom logs with a custom retention period.
    D. Store the logs in a Cloud Storage bucket with a 1-year retention period. After 1 year, move the logs to another bucket with a 2-year retention period.

  • Question 293:

    Your infrastructure team is responsible for creating and managing Compute Engine VMs. Your team uses the Google Cloud console and gcloud CLI to provision resources for the development environment. You need to ensure that all Compute Engine VMs are labeled correctly for compliance reasons. In case of missing labels, you need to implement corrective actions so the labels are configured accordingly without changing the current deployment process. You want to use the most scalable approach.

    What should you do?

    A. Use a Cloud Audit Logs trigger to invoke a Cloud Run function when a Compute Engine VM is created.Check for missing labels and assign them if necessary.
    B. Deploy resources with Terraform. Use the gcloud terraform vet command with a policy to ensure that every Compute Engine VM that is provisioned by Terraform has labels set.
    C. Write a script to check all Compute Engine VMs for missing labels regularly by using Cloud Scheduler.Use the script to assign the labels.
    D. Check all Compute Engine VMs for missing labels regularly. Use the console to assign the labels.

  • Question 294:

    You are developing an application that uses microservices architecture that includes Cloud Run, Bigtable, and Pub/Sub. You want to conduct the testing and debugging process as quickly as possible to create a minimally viable product with minimal cost.

    What should you do?

    A. Use Cloud Shell Editor and Cloud Shell to deploy the application, and test the functionality by using the Google Cloud console in the project.
    B. Use emulators to test the functionality of cloud resources locally, and deploy the code to your Google Cloud project.
    C. Use Cloud Build to create a pipeline, and add the unit testing stage and the manual approval stage. Deploy the code to your Google Cloud project.
    D. Use Cloud Code to develop, deploy, and test microservices resources. Use Cloud Logging to review the resource logs.

  • Question 295:

    You are evaluating developer tools to help drive Google Kubernetes Engine adoption and integration with your development environment, which includes VS Code and IntelliJ.

    What should you do?

    A. Use Cloud Code to develop applications.
    B. Use the Cloud Shell integrated Code Editor to edit code and configuration files.
    C. Use a Cloud Notebook instance to ingest and process data and deploy models.
    D. Use Cloud Shell to manage your infrastructure and applications from the command line.

  • Question 296:

    You have an application written in Python running in production on Cloud Run. Your application needs to read/write data stored in a Cloud Storage bucket in the same project. You want to grant access to your application following the principle of least privilege.

    What should you do?

    A. Create a user-managed service account with a custom IAM role.
    B. Create a user-managed service account with the Storage Admin IAM role.
    C. Create a user-managed service account with the Project Editor IAM role.
    D. Use the default service account linked to the Cloud Run revision in production.

  • Question 297:

    Your application is running in multiple Google Kubernetes Engine clusters. It is managed by a Deployment in each cluster. The Deployment has created multiple replicas of your Pod in each cluster. You want to view the logs sent to stdout for all of the replicas in your Deployment in all clusters.

    Which command should you use?

    A. kubectl logs [PARAM]
    B. gcloud logging read [PARAM]
    C. kubectl exec -it [PARAM] journalctl
    D. gcloud compute ssh [PARAM] --command= "sudo journalctl"

  • Question 298:

    You manage a microservices application on Google Kubernetes Engine (GKE) using Istio. You secure the communication channels between your microservices by implementing an Istio AuthorizationPolicy, a Kubernetes NetworkPolicy, and mTLS on your GKE cluster. You discover that HTTP requests between two Pods to specific URLs fail, while other requests to other URLs succeed.

    What is the cause of the connection issue?

    A. A Kubernetes NetworkPolicy resource is blocking HTTP traffic between the Pods.
    B. The Pod initiating the HTTP requests is attempting to connect to the target Pod via an incorrect TCP port.
    C. The Authorization Policy of your cluster is blocking HTTP requests for specific paths within your application.
    D. The cluster has mTLS configured in permissive mode, but the Pod's sidecar proxy is sending unencrypted traffic in plain text.

  • Question 299:

    Your team is building an application for a financial institution. The application's frontend runs on Compute Engine, and the data resides in Cloud SQL and one Cloud Storage bucket. The application will collect data containing PII, which will be stored in the Cloud SQL database and the Cloud Storage bucket. You need to secure the PII data.

    What should you do?

    A. 1. Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2. Using IAM, allow only the frontend service account to access the Cloud Storage bucket
    B. 1. Create the relevant firewall rules to allow only the frontend to communicate with the Cloud SQL database 2. Enable private access to allow the frontend to access the Cloud Storage bucket privately
    C. 1. Configure a private IP address for Cloud SQL 2. Use VPC-SC to create a service perimeter 3. Add the Cloud SQL database and the Cloud Storage bucket to the same service perimeter
    D. 1. Configure a private IP address for Cloud SQL 2. Use VPC-SC to create a service perimeter 3. Add the Cloud SQL database and the Cloud Storage bucket to different service perimeters

  • Question 300:

    You are developing a microservice-based application that will be deployed on a Google Kubernetes Engine cluster. The application needs to read and write to a Spanner database. You want to follow security best practices while minimizing code changes.

    How should you configure your application to retrieve Spanner credentials?

    A. Configure the appropriate service accounts, and use Workload Identity to run the pods.
    B. Store the application credentials as Kubernetes Secrets, and expose them as environment variables.
    C. Configure the appropriate routing rules, and use a VPC-native cluster to directly connect to the database.
    D. Store the application credentials using Cloud Key Management Service, and retrieve them whenever a database connection is made.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Google exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PROFESSIONAL-CLOUD-DEVELOPER exam preparations and Google certification application, do not hesitate to visit our Vcedump.com to find your solutions here.