1.

Your client wants you to share a screenshot of all the deployments that are/were
running on your Google Cloud Deployment Manager. Which command will you use to
resolve this? V
2. Why can cloud providers offer elastic resource allocation? B EXTENSIVE V
3. You are deploying a new relational database to support a web application. Which
type of storage system would you use to store data files of the database? B block
storage v
4. If you use a cluster that is managed by a cloud provider, which of these will be
managed for you by the cloud provider? all of the above V
5. When setting up a network in GCP, what is your network and the resources in it
treated as? VPC V
6. You created a bucket in cloud storage and uploaded some files and then enabled
object versioning on it. Which version the files you have already added will have? 1 V
7. You have created a virtual machine. Which of the following system administration
operations are you allowed to perform on it? All of the above V
8. You are working for a healthcare industry and for compliance reasons your manager
has asked you to make sure that all logs are maintained for a minimum of 6 years.
Which service can be used and is supported by Stackdriver Logging? A big query
and GCS V
9. Your client’s transactions must access a drive attached to a virtual machine that
allows for random access to parts of files. What kind of storage does the attached
drive provide? block storage v
10. A user prefers services that require minimal setup. Why would you recommend
Cloud Storage, App Engine, and Cloud Functions? all are serverless V
11. You created a Cloud SQL instance with automated backup switched on. After a few
weeks your manager asked you to restore a 12 days older snapshot. While restoring
the snapshot you notice that there are only 7 automated backups available. What can
be the reason? cloud sql only store 7 autmated backup V
12. You have been hired as a contractor by one of the travel technology companies that
is planning to containerize their existing applications in such a way that they can
perform a lift and shift very easily in the future if they plan to move away from Google
Cloud. Which service will best suit this case? kubernetes V
13. What is the command for creating a storage bucket that has once per month access
and is named “archive_bucket”? B. gsutil mb -c coldline gs://archive_bucket V
14. You are working for a genomics company in the US that is planning to conduct data
analysis on around 10 TB of data. The company would require 20 vCPUs and 60GB
of RAM for the same. You have been asked to figure out the cheapest option to
conduct the analysis. Which of the following would you use? preemtible instances V
15. You are a Google Cloud Engineer and assigned to set up a project for the team of
four members. You need to grant only general permissions for all the resources of the
project. You decided to grant a primitive role to each person for different levels of
access based on their responsibilities in the project. What is not considered as a
primitive role in the Google Cloud Platform console? publisher V
16. Your managers want you to suggest a low-cost storage option that could be used to
share read-only data across multiple instances with high performance and no edge
caching. Which storage option would you suggest? cloud filestore V
17. Being a Senior Cloud Engineer of the company, you are asked to launch a managed
MySQL DB using custom VPC with network range of 172.17.0.0/16 on Google Cloud
keeping security at utmost priority allowing team members to access it only over a
private channel.
You completed the setup with all the requirements, but developers are unable to
access DB over the private network via application hosted on VM. What can be the
reason? reserved ip hence V
18. Which of the following commands could be used to change the storage class of an
object in Cloud Storage? -s V
19. You are working along with a team of developers who are building an accounting
application for a startup. Until now, they were using VM disk to store logs but have
now realized that this strategy is not scalable and want a different solution to store
logs. Which service would you recommend to the team? Stackdriver logging V
20. You have set a firewall rule that will permit inbound connections to a VM instance
named bangkitserver-2. You want to apply this rule only if there is not another rule
that would deny that traffic. What priority would you give to this rule? 65k V
21. You are planning to build a microservice application with docker containers and want
to host them on Google Cloud as stateless and serverless. Which service will help
you serve the need? Cloud run V
22. You have an application server running on Compute Engine in the europe-west1-d
zone. You need to ensure high availability and replicate the server to the
europe-west2-c zone using the fewest steps possible. What should you do? V
23. You work for a retail company that has a busy online store. As you are approaching
the new year, you find that your e-store is getting more and more traffic. You ensure
that your web servers are behind a managed instance group. However, you notice
that the web tier is frequently scaling, sometimes multiple times in an hour. You need
to keep the instance group from scaling up and down so rapidly. Which of the
following options would help you achieve this? increase cooldown period V
24. Your program manager wants you to set up a hybrid network between your Google
Cloud and on-premise infrastructure that allows high bandwidth, low latency
connection between both the networks. As a Sr. Cloud Engineer, which one of the
following services will you select? interconncet V
25. A medical clinic has a retention policy of 5 years. The records older than 4 months
get accessed a few times in each quarter for reporting purposes. The clinic is using
Cloud Storage to store all their records and is looking for a cost-effective archiving
solution. Which object lifecycle management option would you recommend to the
clinic authorities? age:365, action:type:SetStorageClass, storageClass: COLDLINE V
26. You are working for a service company that has an automobile client. The client has
developed an application for internal use with Erlang and has approached your
company to help him to ease the application deployment process on Google Cloud.
The company does not have highly trained people, so it wants you to deploy the
application in such a way that post-deployment, they will be able to manage it without
worrying about the infrastructure. Which of the following services would you prefer?
App Engine Flexible V
27. Your company has an application that is deployed using serverless architecture by
making use of Cloud Function as backend code, Pub/Sub, Endpoints, and serve the
static content via Cloud Storage. Your application is used heavily and you were
informed about an issue with respect to the Cloud Function. You realized that the
 issue is because of the invocation limit per second. What is the default limit set by
GCP to invoke a function per second? 1000 V
28. Your team is building a media collection and analysis application for one of your
clients. They have asked you to enable Google Photos API and YouTube API.
Moreover, they want to test the API without integrating it within the application. Which
service would help your development team test the API without integration? API
Explorer V
29. Which of the following commands is used to create buckets in Cloud Storage? gsutil
mb V
30. Engineering team is building an application which routes requests on the TCP layer.
They need a load balancer with support of SSL termination on load balancer. Which
of the following is the best available option? SSL Proxy Load Balancer V
31. You were inspecting the containers on a VM and found out that a pod is running
which is no more required. You try to delete it but every time a new pod is created.
What do you need to delete now for removing that pod? ReplicaSet V
32. You are working on a project whose development phase has been completed and the
manager has asked you to create a new project for UAT environment which should
be a clone of the development environment. Dev environment consists of 5 VMs
which need to be replicated to UAT environment. How can you achieve this? create
custom image V
33. Your application servers are deployed in a private subnet and you connect to an
application instance using a bastion host, you connect to the bastion host using
Console Shell and then ssh to the respective application instance. Unfortunately,
Cloud Shell is taking a lot of time to respond and your manager wants you to ssh to
the instance to fix an application specific configuration. What command would you
use to SSH into the server from the public end? gcloud compute ssh
username@bastion-host V
34. You are working as a system administrator and have been asked to make sure that
all images are patched up to date and developers are not allowed to use old images
that are not up to date as per PCI compliance. How would you achieve this? Mark
image as obsolete to prevent users from using the old image. V
35. One of your clients has asked you to create an SFTP server on Google Cloud. Which
storage service of Google Cloud will be the most reliable and durable option?
filestore V
36. Your client wants to migrate their 30 TB of Hadoop or Spark cluster from an RHEL
6.5 on-premise server to Google Cloud Platform. Which of the following services can
be used at the GCP end? Dataproc V
37. A team of developers has been working on a Java 8 application on their local
machine but the company has now decided to create Windows VM for the team and
let them work on VM instead of working on a local machine. Additionally, your
manager has asked to send all stack traces to a common place. Which service would
you use to meet the following requirement? cloud trace V
38. What does the CIDR 10.0.2.0/26 correspond to? 10.0.2.0 - 10.0.2.63 V
39. You have an application running on Google Cloud VM written in C#.Net for the last
few weeks. Suddenly you experience elevated latency and poor performance among
application endpoints. Which service can help you troubleshoot this issue?
stackdriver trace V
40. You have deployed a Django 1.5 Python application to App Engine. This version of
Django requires Python 3. Due to some issues, App Engine is trying to run the
application using Python 2. Which of the following files would you check and modify
(if required) to ensure that Python 3 is used with the application? app.yaml V
41. You want to filter logs present in Stackdriver Log Viewer using more than a simple
text filter. Which feature will allow you to do it? advanced filter V
42. A VM instance is trying to read from a Cloud Storage bucket. Reading the bucket is
allowed by IAM roles granted to the service account of the VM. Reading buckets is
denied by the scopes assigned to the VM. What will happen if the VM tries to read
from the bucket? The read will not execute because both scopes and IAM roles are
applied to determine what operations can be performed. V
43. You deployed 10 microservices using Google Kubernetes Engine. The command
kubectl run deployed the microservices in different pods, 2 weeks later your manager
asked you to delete the pods as the services were no longer needed. Which of the
following options is the best way to delete the pods? kubectl delete
deployments/<name> services/<name> V
44. A new junior engineer is joining your team. Your manager asks you to create an IAM
user for him. You are trying to create an IAM user for the new joiner, but you receive
an error saying: “Email addresses and domains must be associated with an active
Google Account or Google Apps Account”. What is the possible reason for this?
gsuite V
45. Under what scenario will you prefer using a tag or service account with a firewall
instead of using an IP address? Any instance launched using tag or service account
will have firewall attached automatically. V
46. Your client wants you to update a viewer role in your google cloud platform project
using CLI. The roles have access to the App Engine list and get method and you
have been asked to add the cloud storage list and get permissions. The changes
were reflected after you ran the command but the user complained that they are
unable to view the content of Cloud Storage buckets using CLI. What could be the
most appropriate reason? The API for Cloud Storage is not enabled. V
47. You are appointed as a head of infrastructure security and the first thing you are
asked is to create few IAM users following best security practices. How would you
ensure that these users are only able to launch a new instance and list them? Create
custom role with specific permissions and attach it to users. V
48. Someone from a different team has approached you that he is working on a web
application hosted on Google Cloud VM which needs to view access to Google Cloud
Storage service. Which of the following is the best approach? VM Instances by
default have read access to Google Cloud Storage service, so nothing needs to be
done. V
49. Your client hosts a static website on Cloud Storage written in HTML, CSS,
JavaScript. The site targets users in North America, the usage of the website has
grown worldwide and hundreds of thousands of visitors access it monthly. Visitors
from different parts of the world are experiencing slow performance due to latency
while users in the United States experience normal response times. What service
can mitigate this issue? cloud cdn O
50. One of your team members had accidentally included a service account private
JSON key while pushing code to GitHub. What steps should you immediately
perform? Delete the JSON file from GitHub, remove the key from Google Cloud IAM
and generate a new key for use. V