Practice Exams:

Free Professional-Cloud-Architect Exam Braindumps

Pass your Google Certified Professional - Cloud Architect (GCP) exam with these free Questions and Answers

Page 13 of 54
PDF with 267 Questions
QUESTION 56

- (Exam Topic 10)
For this question, refer to the EHR Healthcare case study. You are responsible for ensuring that EHR's use of Google Cloud will pass an upcoming privacy compliance audit. What should you do? (Choose two.)

  1. A. Verify EHR's product usage against the list of compliant products on the Google Cloud compliance page.
  2. B. Advise EHR to execute a Business Associate Agreement (BAA) with Google Cloud.
  3. C. Use Firebase Authentication for EHR's user facing applications.
  4. D. Implement Prometheus to detect and prevent security breaches on EHR's web-based applications.
  5. E. Use GKE private clusters for all Kubernetes workloads.

Correct Answer: AB
https://cloud.google.com/security/compliance/hipaa

QUESTION 57

- (Exam Topic 8)
For this question, refer to the Mountkirk Games case study. You need to analyze and define the technical architecture for the database workloads for your company, Mountkirk Games. Considering the business and technical requirements, what should you do?

  1. A. Use Cloud SQL for time series data, and use Cloud Bigtable for historical data queries.
  2. B. Use Cloud SQL to replace MySQL, and use Cloud Spanner for historical data queries.
  3. C. Use Cloud Bigtable to replace MySQL, and use BigQuery for historical data queries.
  4. D. Use Cloud Bigtable for time series data, use Cloud Spanner for transactional data, and use BigQuery for historical data queries.

Correct Answer: D
https://cloud.google.com/bigtable/docs/schema-design-time-series

QUESTION 58

- (Exam Topic 2)
For this question, refer to the TerramEarth case study.
To speed up data retrieval, more vehicles will be upgraded to cellular connections and be able to transmit data to the ETL process. The current FTP process is error-prone and restarts the data transfer from the start of the file when connections fail, which happens often. You want to improve the reliability of the solution and minimize data transfer time on the cellular connections. What should you do?

  1. A. Use one Google Container Engine cluster of FTP server
  2. B. Save the data to a Multi-Regional bucke
  3. C. Run the ETL process using data in the bucket.
  4. D. Use multiple Google Container Engine clusters running FTP servers located in different region
  5. E. Save the data to Multi-Regional buckets in us, eu, and asi
  6. F. Run the ETL process using the data in the bucket.
  7. G. Directly transfer the files to different Google Cloud Multi-Regional Storage bucket locations in us, eu, and asia using Google APIs over HTTP(S). Run the ETL process using the data in the bucket.
  8. H. Directly transfer the files to a different Google Cloud Regional Storage bucket location in us, eu, and asia using Google APIs over HTTP(S). Run the ETL process to retrieve the data from each Regional bucket.

Correct Answer: D
https://cloud.google.com/storage/docs/locations

QUESTION 59

- (Exam Topic 6)
For this question, refer to the Dress4Win case study. You are responsible for the security of data stored in Cloud Storage for your company, Dress4Win. You have already created a set of Google Groups and assigned the appropriate users to those groups. You should use Google best practices and implement the simplest design to meet the requirements.
Considering Dress4Win’s business and technical requirements, what should you do?

  1. A. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.Encrypt data with a customer-supplied encryption key when storing files in Cloud Storage.
  2. B. Assign custom IAM roles to the Google Groups you created in order to enforce security requirements.Enable default storage encryption before storing files in Cloud Storage.
  3. C. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirements.Utilize Google’s default encryption at rest when storing files in Cloud Storage.
  4. D. Assign predefined IAM roles to the Google Groups you created in order to enforce security requirement
  5. E. Ensure that the default Cloud KMS key is set before storing files in Cloud Storage.

Correct Answer: D
https://cloud.google.com/iam/docs/understanding-service-accounts

QUESTION 60

- (Exam Topic 5)
You are developing your microservices application on Google Kubernetes Engine. During testing, you want to validate the behavior of your application in case a specific microservice should suddenly crash. What should you do?

  1. A. Add a taint to one of the nodes of the Kubernetes cluste
  2. B. For the specific microservice, configure a pod anti-affinity label that has the name of the tainted node as a value.
  3. C. Use Istio’s fault injection on the particular microservice whose faulty behavior you want to simulate.
  4. D. Destroy one of the nodes of the Kubernetes cluster to observe the behavior.
  5. E. Configure Istio’s traffic management features to steer the traffic away from a crashing microservice.

Correct Answer: B
Microservice runs on all nodes. The Micro service runs on Pod, Pod runs on Nodes. Nodes is nothing but Virtual machines. Once deployed the application microservices will get deployed across all Nodes. Destroying one node may not mimic the behaviour of microservice crashing as it may be running in other nodes.
link: https://istio.io/latest/docs/tasks/traffic-management/fault-injection/

Page 13 of 54
PDF with 267 Questions

Post your Comments and Discuss Google Professional-Cloud-Architect exam with other Community members: