What Refined Cloud-Digital-Leader Question Is

NEW QUESTION 1

You are working with the head of the IT team and planning the move of computing systems. The questionnaire indicates that they have a reporting application that runs almost 24 hours every day of the week. When there is extra load, it queues up the processing and executes tasks when there is less demand. Which of these compute options would you recommend for them?

• A. Use a serverless option - App Engine Standard for Flex
• B. Use a server-based option - Compute Engine.
• C. Use a serverless option - Cloud Functions
• D. Serverless option - Cloud Run

Answer: C

Explanation:
- Because Compute Engine VMs are the preferred compute option as they are long-running.

NEW QUESTION 2

If you increase the size of a subnet in a custom VPC network, the IP addresses of virtual machines already on that subnet might be affected. Which options are Correct.

• A. False
• B. None of the above
• C. True
• D. Not Defined by Google Cloud Platform

Answer: A

Explanation:
You can dynamically increase the size of a subnet in a custom network by expanding the range of IP addresses allocated to it. Doing that doesn’t affect already configured VMs.

NEW QUESTION 3

A retail company stores their product inventory in a legacy system. Often, customers find products on the company's website and want to purchase them in-store.
However, when they arrive, they discover that the products are out of stock.
How could the company benefit from using an application programming interface (API)?

• A. To create personalized product recommendations for customers
• B. To optimize their on-premises legacy system stability
• C. By manually linking each inventory system to the website on a case-by-case basis
• D. By programmatically connecting the inventory system to their website

Answer: D

Explanation:
By programmatically connecting the inventory system to their website The issue is the website shows an item is available at the store, but when the customer gets to the store, they find out that item is out of stock.

NEW QUESTION 4

How would a global organization benefit from managing their data with Cloud Spanner?

• A. Cloud Spanner is optimized for cold storage
• B. Cloud Spanner replicates data across regions in real time
• C. Cloud Spanner is optimized to ingest unstructured data
• D. Cloud Spanner visualizes and analyzes data in real time

Answer: B

Explanation:
Spanner is Google's scalable, multi-version, globally-distributed, and synchronously-replicated database.

NEW QUESTION 5

Your organization needs to restrict access to a Cloud Storage bucket. Only employees who are based in Canada should be allowed to view the contents.
What is the most effective and efficient way to satisfy this requirement?

• A. Deploy the Cloud Storage bucket to a Google Cloud region in Canada
• B. Configure Google Cloud Armor to allow access to the bucket only from IP addresses based in Canada
• C. Give each employee who is based in Canada access to the bucket
• D. Create a group consisting of all Canada-based employees, and give the group access to the bucket

Answer: D

Explanation:

Reference: https://cloud.google.com/storage/docs/access-control
Because you can use your own private VPN to access the Canada-only bucket from anywhere in the world.

NEW QUESTION 6

A bank wants to track the success of their existing ATM network, which has been modernized with APIs to instantly notify customers about their transfers. What is the benefit of using Apigee to achieve this goal?

• A. It has dashboards that chart dimensions and metrics to report on APIs.
• B. It replicates banking APIs to create new business value.
• C. It measures and tracks their total cost of ownership (TCO).
• D. It allows developers to connect the banking APIs with the public cloud.

Answer: A

Explanation:
Apigee includes analytics services which allow enterprises to report on various aspects of an API.

NEW QUESTION 7

An e-commerce company's business has been booming. To keep up with the growth the IT team also grew. Many new people are being added and new resources are being set up. The CIO is in conver-sation with you over coffee one day and expresses her growing concern that they might be moving too fast. Their security checks and policies have not kept pace. She worries that somebody would make a misconfiguration or compliance violation thus exposing the company to data and privacy loss. What can you advise her?

• A. Use Cloud Identity-Aware Proxy to allow only specific users to access the data.
• B. Use Security Command Center to have a centralized view of assets and get noti-fied on misconfigurations and vulnerabilities.
• C. Use Cloud Data Loss Prevention to prevent the loss of any data.
• D. Use Cloud Armor to block any DDoS attacks that could be a threat.

Answer: B

Explanation:
Security Command Center is the right tool for this use case. It can check resources for security issues and notify you when issues are found.
https://cloud.google.com/security-command-center

NEW QUESTION 8

An organization is looking for a business intelligence solution that allows individual employees and end users to analyze business data and generate insights.
Which Google Cloud product or service should the organization use?

• A. Looker
• B. Cloud Spanner
• C. BigQuery
• D. Dataflow

Answer: A

NEW QUESTION 9

An organization finds that the amount of cash in their vending machines doesn't match the value of items sold. They have decided to upgrade their vending machines with cloud- based mobile payment systems.
How could the organization benefit from this upgrade?

• A. They could relax data access permissions.
• B. They could reduce their error budget overspend.
• C. They could improve their perimeter security.
• D. They could view data history to see transactions.

Answer: D

NEW QUESTION 10

A developer in your IT team is cheating a bucket on Cloud Storage. He is receiving an error that the bucket name already exists. He has checked his project and the few other pro-jects in the organization, The name seems to be entirely unique, What would be the is-sue?

• A. Bucket names ignore any "." in the nam
• B. Look for similar bucket names that have a "." in it.
• C. Previously deleted bucket names in the same project cannot be reuse
• D. There must have been an older bucket with the same name.
• E. Bucket names in Cloud storage have to be globally unique
• F. Bucket name are case insensitive- look for bucket name in your org that have a different capitalization.

Answer: C

Explanation:
Bucket names have to be unique across Google Cloud Platform [GCP], Including other organizations and projects.

NEW QUESTION 11

An organization's applications run on an inflexible, on-premises architecture. The organization has decided to modernize their existing applications with the cloud. What may have prompted this business decision?

• A. Developers want cloud providers to take full control of their application performance.
• B. IT managers want cloud providers to automatically deploy their infrastructure.
• C. IT managers want to stop making gradual changes.
• D. Developers want to test ideas and experiment with more ease.

Answer: D

Explanation:
Modernizing applications means they can make alterations and innovate more easily.

NEW QUESTION 12

You are working in a company where you need to store Terabytes of Image Data daily and process them e.g. Taking photos of the entire planet 24 hours every day with satellite and sending data to data centres to store and process it. Which of the following would be the best combination for your infrastructure.
You are working in a company where you need to store Terabytes of Image Data daily and process them e.g. Taking photos of the entire planet 24 hours every day with satellite and
sending data to data centres to store and process it. Which of the following would be the best combination for your infrastructure.

• A. Bare Metal Solutions with Google Cloud Storage.
• B. Google Cloud Storage & Google Cloud Compute Engines
• C. Google Cloud Storage & Preemptible VMs.
• D. None of the Above

Answer: C

Explanation:
The above is a real world example of a company named Planet, where they sent around 80+ satellites to take pictures of earth every day, 24 hours. They run around 40,000 preemptible VMs concurrently.
Preemptible instances function like normal instances but have the following limitations: Compute Engine might stop preemptible instances at any time due to system events. The probability that Compute Engine will stop a preemptible instance for a system event is generally low, but might vary from day to day and from zone to zone depending on current conditions.
Compute Engine always stops preemptible instances after they run for 24 hours. Certain actions reset this 24-hour counter.
Preemptible instances are finite Compute Engine resources, so they might not always be available.
Preemptible instances can't live migrate to a regular VM instance, or be set to automatically restart when there is a maintenance event.
Due to the above limitations, preemptible instances are not covered by any Service Level Agreement (and, for clarity, are excluded from the Compute Engine SLA).
The Google Cloud Free Tier credits for Compute Engine do not apply to preemptible instances.

Reference link- https://cloud.google.com/compute/docs/instances/preemptible

NEW QUESTION 13

What load balancer type is supported with Cloud Armor security policies?

• A. SSL Proxy, HTTP(S) and SSL
• B. HTTP(S) and SSL
• C. Regional SSL
• D. HTTP(S) Only

Answer: D

Explanation:
Google Cloud Armor security policies protect your application by providing Layer 7 filtering and by scrubbing incoming requests for common web attacks or other Layer 7 attributes to potentially block traffic before it reaches your load balanced backend services or backend buckets. Each security policy is made up of a set of rules that filter traffic based on conditions such as an incoming request’s IP address, IP range, region code, or request headers.
-> Google Cloud Armor security policies are available only for backend services behind an external HTTP(S) load balancer. The load balancer can be in Premium Tier or Standard Tier.
-> Google Cloud Armor security policies and IP DENY lists and ALLOW lists are available only for HTTP(S) load balancing.
Reference link- https://cloud.google.com/armor/docs/security-policy-overview

NEW QUESTION 14

Why is data stored in Google Cloud secure and private?

• A. Data is encrypted by the Security Command Center
• B. Data is encrypted by Cloud Data Loss Prevention
• C. Data is encrypted by default
• D. Data is encrypted when an appropriate tag is applied

Answer: C

Explanation:
https://cloud.google.com/docs/security/encryption/default-encryption#:~:text=Google%20uses%20the%20Advanced%20Encryption,to%202015%20t hat%20use%20AES128

NEW QUESTION 15

Your organization needs a large amount of extra computing power within the next two weeks.
After those two weeks, the need for the additional resources will end. Which is the most cost-effective approach?

• A. Use a committed use discount to reserve a very powerful virtual machine
• B. Purchase one very powerful physical computer
• C. Start a very powerful virtual machine without using a committed use discount
• D. Purchase multiple physical computers and scale workload across them

Answer: C

Explanation:
When you purchase a committed use contract, you purchase Compute Engine resources—such as vCPUs, memory, GPUs, local SSDs, and sole-tenant nodes—at a discounted price in return for committing to paying for those resources for 1 year or 3 years

NEW QUESTION 16
......