[Q72-Q90] Download Google Professional-Cloud-DevOps-Engineer Sample Questions [May-2025]

Share

Download Google Professional-Cloud-DevOps-Engineer Sample Questions [May-2025]

Real Professional-Cloud-DevOps-Engineer Exam Questions and Answers FREE

NEW QUESTION # 72
You are running an experiment to see whether your users like a new feature of a web application. Shortly after deploying the feature as a canary release, you receive a spike in the number of 500 errors sent to users, and your monitoring reports show increased latency. You want to quickly minimize the negative impact on users. What should you do first?

  • A. Trace the origin of 500 errors and the root cause of increased latency.
  • B. Start monitoring latency, traffic, errors, and saturation.
  • C. Record data for the postmortem document of the incident.
  • D. Roll back the experimental canary release.

Answer: A


NEW QUESTION # 73
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to a Kubernetes cluster in the production environment. The security auditor is concerned that developers or operators could circumvent automated testing and push code changes to production without approval. What should you do to enforce approvals?

  • A. Use an Admission Controller to verify that incoming requests originate from approved sources.
  • B. Leverage Kubernetes Role-Based Access Control (RBAC) to restrict access to only approved users.
  • C. Configure the build system with protected branches that require pull request approval.
  • D. Enable binary authorization inside the Kubernetes cluster and configure the build pipeline as an attestor.

Answer: D

Explanation:
Explanation
The keywords here is "developers or operators". Option A the operators could push images to production without approval (operators could touch the cluster directly and the cluster cannot do any action against them).
Rest same as francisco_guerra.


NEW QUESTION # 74
You are managing the production deployment to a set of Google Kubernetes Engine (GKE) clusters. You want to make sure only images which are successfully built by your trusted CI/CD pipeline are deployed to production. What should you do?

  • A. Set up the Kubernetes Engine clusters with Binary Authorization.
  • B. Enable Cloud Security Scanner on the clusters.
  • C. Enable Vulnerability Analysis on the Container Registry.
  • D. Set up the Kubernetes Engine clusters as private clusters.

Answer: C


NEW QUESTION # 75
You need to deploy a new service to production. The service needs to automatically scale using a Managed Instance Group (MIG) and should be deployed over multiple regions. The service needs a large number of resources for each instance and you need to plan for capacity. What should you do?

  • A. Monitor results of Stackdriver Trace to determine the required amount of resources.
  • B. Deploy the service in one region and use a global load balancer to route traffic to this region.
  • C. Use the n2-highcpu-96 machine type in the configuration of the MIG.
  • D. Validate that the resource requirements are within the available quota limits of each region.

Answer: D

Explanation:
https://cloud.google.com/compute/quotas#understanding_quotas
https://cloud.google.com/compute/quotas


NEW QUESTION # 76
You recently migrated an ecommerce application to Google Cloud. You now need to prepare the application for the upcoming peak traffic season. You want to follow Google-recommended practices. What should you do first to prepare for the busy season?

  • A. Pre-provision the additional compute power that was used last season, and expect growth.
  • B. Load test the application to profile its performance for scaling.
  • C. Create a Terraform configuration for the application's underlying infrastructure to quickly deploy to additional regions.
  • D. Migrate the application to Cloud Run, and use autoscaling.

Answer: B

Explanation:
The first thing you should do to prepare your ecommerce application for the upcoming peak traffic season is to load test the application to profile its performance for scaling. Load testing is a process of simulating high traffic or user demand on your application and measuring how it responds. Load testing can help you identify any bottlenecks, errors, or performance issues that might affect your application during the busy season1. Load testing can also help you determine the optimal scaling strategy for your application, such as horizontal scaling (adding more instances) or vertical scaling (adding more resources to each instance)2.
There are different tools and methods for load testing your ecommerce application on Google Cloud, depending on the type and complexity of your application. For example, you can use Cloud Load Balancing to distribute traffic across multiple instances of your application, and use Cloud Monitoring to measure the latency, throughput, and error rate of your application3. You can also use Cloud Functions or Cloud Run to create serverless load generators that can simulate user requests and send them to your application4. Alternatively, you can use third-party tools such as Apache JMeter or Locust to create and run load tests on your application.
By load testing your ecommerce application before the peak traffic season, you can ensure that your application is ready to handle the expected load and provide a good user experience. You can also use the results of your load tests to plan and implement other steps to prepare your application for the busy season, such as migrating to a more scalable platform, creating a Terraform configuration for deploying to additional regions, or pre-provisioning additional compute power.
Reference:
1: Load Testing 101: How To Test Website Performance | BlazeMeter
2: Scaling applications | Google Cloud
3: Load testing using Google Cloud | Solutions | Google Cloud
4: Serverless load testing using Cloud Functions | Solutions | Google Cloud


NEW QUESTION # 77
You have migrated an e-commerce application to Google Cloud Platform (GCP). You want to prepare the application for the upcoming busy season. What should you do first to prepare for the busy season?

  • A. Pre-provision double the compute power used last season, expecting growth.
  • B. Enable AutoScaling on the production clusters, in case there is growth.
  • C. Create a runbook on inflating the disaster recovery (DR) environment if there is growth.
  • D. Load teat the application to profile its performance for scaling.

Answer: D

Explanation:
https://cloud.google.com/blog/topics/retail/preparing-for-peak-holiday-season-while-wfh


NEW QUESTION # 78
You support the backend of a mobile phone game that runs on a Google Kubernetes Engine (GKE) cluster. The application is serving HTTP requests from users. You need to implement a solution that will reduce the network cost. What should you do?

  • A. Configure a Google Cloud HTTP Load Balancer as Ingress.
  • B. Configure your Kubernetes cluster as a Private Cluster.
  • C. Configure your network services on the Standard Tier.
  • D. Configure the VPC as a Shared VPC Host project.

Answer: D


NEW QUESTION # 79
You need to run a business-critical workload on a fixed set of Compute Engine instances for several months. The workload is stable with the exact amount of resources allocated to it. You want to lower the costs for this workload without any performance implications. What should you do?

  • A. Migrate the instances to a Managed Instance Group.
  • B. Create an Unmanaged Instance Group for the instances used to run the workload.
  • C. Convert the instances to preemptible virtual machines.
  • D. Purchase Committed Use Discounts.

Answer: D


NEW QUESTION # 80
You are creating and assigning action items in a postmodern for an outage. The outage is over, but you need to address the root causes. You want to ensure that your team handles the action items quickly and efficiently.
How should you assign owners and collaborators to action items?

  • A. Assign one owner for each action item and any necessary collaborators.
  • B. Assign multiple owners for each item to guarantee that the team addresses items quickly
  • C. Assign collaborators but no individual owners to the items to keep the postmortem blameless.
  • D. Assign the team lead as the owner for all action items because they are in charge of the SRE team.

Answer: A

Explanation:
Explanation
https://devops.com/when-it-disaster-strikes-part-3-conducting-a-blameless-post-mortem/


NEW QUESTION # 81
You support an application running on GCP and want to configure SMS notifications to your team for the most critical alerts in Stackdriver Monitoring. You have already identified the alerting policies you want to configure this for. What should you do?

  • A. Ensure that your team members set their SMS/phone numbers in their Stackdriver Profile. Select the SMS notification option for each alerting policy and then select the appropriate SMS/phone numbers from the list.
  • B. Configure a Slack notification for each alerting policy. Set up a Slack-to-SMS integration to send SMS messages when Slack messages are received. Ensure that your team members add their SMS/phone numbers to the external integration.
  • C. Download and configure a third-party integration between Stackdriver Monitoring and an SMS gateway.
    Ensure that your team members add their SMS/phone numbers to the external tool.
  • D. Select the Webhook notifications option for each alerting policy, and configure it to use a third-party integration tool. Ensure that your team members add their SMS/phone numbers to the external tool.

Answer: B


NEW QUESTION # 82
You are running an application on Compute Engine and collecting logs through Stackdriver. You discover that some personally identifiable information (Pll) is leaking into certain log entry fields. All Pll entries begin with the text userinfo. You want to capture these log entries in a secure location for later review and prevent them from leaking to Stackdriver Logging. What should you do?

  • A. Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, create an advanced log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.
  • B. Create an advanced log filter matching userinfo, configure a log export in the Stackdriver console with Cloud Storage as a sink, and then configure a tog exclusion with userinfo as a filter.
  • C. Use a Fluentd filter plugin with the Stackdriver Agent to remove log entries containing userinfo, and then copy the entries to a Cloud Storage bucket.
  • D. Create a basic log filter matching userinfo, and then configure a log export in the Stackdriver console with Cloud Storage as a sink.

Answer: C

Explanation:
https://medium.com/google-cloud/fluentd-filter-plugin-for-google-cloud-data-loss-prevention-api-42bbb1308e76


NEW QUESTION # 83
Your team is designing a new application for deployment both inside and outside Google Cloud Platform (GCP). You need to collect detailed metrics such as system resource utilization. You want to use centralized GCP services while minimizing the amount of work required to set up this collection system. What should you do?

  • A. Import the Stackdriver Debugger package, and configure the application to emit debug messages with timing information.
  • B. Import the Stackdriver Profiler package, and configure it to relay function timing data to Stackdriver for further analysis.
  • C. Instrument the code using a timing library, and publish the metrics via a health check endpoint that is scraped by Stackdriver.
  • D. Install an Application Performance Monitoring (APM) tool in both locations, and configure an export to a central data storage location for analysis.

Answer: A


NEW QUESTION # 84
Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to the production environment. A recent security audit alerted your team that the code pushed to production could contain vulnerabilities and that the existing tooling around virtual machine (VM) vulnerabilities no longer applies to the containerized environment. You need to ensure the security and patch level of all code running through the pipeline. What should you do?

  • A. Reconfigure the existing operating system vulnerability software to exist inside the container.
  • B. Implement static code analysis tooling against the Docker files used to create the containers.
  • C. Configure the containers in the build pipeline to always update themselves before release.
  • D. Set up Container Analysis to scan and report Common Vulnerabilities and Exposures.

Answer: D


NEW QUESTION # 85
You work for a global organization and run a service with an availability target of 99% with limited engineering resources. For the current calendar month you noticed that the service has 99 5% availability.
You must ensure that your service meets the defined availability goals and can react to business changes including the upcoming launch of new features You also need to reduce technical debt while minimizing operational costs You want to follow Google-recommended practices What should you do?

  • A. Identify, measure and eliminate toil by automating repetitive tasks
  • B. Allocate available engineers to the feature backlog while you ensure that the sen/ice remains within the availability target
  • C. Add N+1 redundancy to your service by adding additional compute resources to the service
  • D. Define an error budget for your service level availability and minimize the remaining error budget

Answer: A


NEW QUESTION # 86
You support a web application that is hosted on Compute Engine. The application provides a booking service for thousands of users. Shortly after the release of a new feature, your monitoring dashboard shows that all users are experiencing latency at login. You want to mitigate the impact of the incident on the users of your service. What should you do first?

  • A. Review the Stackdriver monitoring.
  • B. Roll back the recent release.
  • C. Upsize the virtual machines running the login services.
  • D. Deploy a new release to see whether it fixes the problem.

Answer: C

Explanation:
Explanation
Rollback to previous stable version. Then you need to find what is causing the issue.


NEW QUESTION # 87
Your company follows Site Reliability Engineering practices. You are the person in charge of Communications for a large, ongoing incident affecting your customer-facing applications. There is still no estimated time for a resolution of the outage. You are receiving emails from internal stakeholders who want updates on the outage, as well as emails from customers who want to know what is happening. You want to efficiently provide updates to everyone affected by the outage. What should you do?

  • A. Provide periodic updates to all stakeholders in a timely manner. Commit to a "next update" time in all communications.
  • B. Delegate the responding to internal stakeholder emails to another member of the Incident Response Team. Focus on providing responses directly to customers.
  • C. Provide all internal stakeholder emails to the Incident Commander, and allow them to manage internal communications. Focus on providing responses directly to customers.
  • D. Focus on responding to internal stakeholders at least every 30 minutes. Commit to "next update" times.

Answer: B


NEW QUESTION # 88
Your product is currently deployed in three Google Cloud Platform (GCP) zones with your users divided between the zones. You can fail over from one zone to another, but it causes a 10-minute service disruption for the affected users. You typically experience a database failure once per quarter and can detect it within five minutes. You are cataloging the reliability risks of a new real-time chat feature for your product. You catalog the following information for each risk:
* Mean Time to Detect (MUD} in minutes
* Mean Time to Repair (MTTR) in minutes
* Mean Time Between Failure (MTBF) in days
* User Impact Percentage
The chat feature requires a new database system that takes twice as long to successfully fail over between zones. You want to account for the risk of the new database failing in one zone. What would be the values for the risk of database failover with the new system?

  • A. MTTD: 5
    MTTR: 10
    MTBF: 90
    Impact: 33%
  • B. MTTD:5
    MTTR: 20
    MTBF: 90
    Impact: 50%
  • C. MTTD:5
    MTTR: 10
    MTBF: 90
    Impact 50%
  • D. MTTD:5
    MTTR: 20
    MTBF: 90
    Impact: 33%

Answer: A


NEW QUESTION # 89
You deploy a new release of an internal application during a weekend maintenance window when there is minimal user traffic. After the window ends, you learn that one of the new features isn't working as expected in the production environment. After an extended outage, you roll back the new release and deploy a fix. You want to modify your release process to reduce the mean time to recovery so you can avoid extended outages in the future. What should you do?
Choose 2 answers

  • A. Before merging new code, require 2 different peers to review the code changes.
  • B. Configure a CI server. Add a suite of unit tests to your code and have your CI server run them on commit and verify any changes.
  • C. Require developers to run automated integration tests on their local development environments before release.
  • D. Adopt the blue/green deployment strategy when releasing new code via a CD server.
  • E. Integrate a code linting tool to validate coding standards before any code is accepted into the repository.

Answer: B,D


NEW QUESTION # 90
......

Truly Beneficial For Your Google Exam: https://www.dumpstorrent.com/Professional-Cloud-DevOps-Engineer-exam-dumps-torrent.html

View All Professional-Cloud-DevOps-Engineer Actual Exam Questions, Answers and Explanations for Free: https://drive.google.com/open?id=1h3YUn3hElbVk0u7n-Kx7-5CTGP-6qah-