AWS Devops Consultant Interview Question Flashcards
What is your view of DevOps of Practice?
Better answer would beThis range for migrating there workloads to modernizing their application architecture by enabling them to use DevOps practices
How does good CICD Pipeline looks to you?
Tips
Never jump to the solution,
- State assume requirement.
- Tend not to ask for requirements as it may go against you where you do not have an experiencelike Data Pipelinelike Security Pipeline - Don’t say I don’t have experience, say I didn’t got opportunity yet to work on them
- Then explain build, unit testing, code analysis, pre-packaging, deploy, error checks and swtich traffic
What is difference between Observability vs monitoring?
While monitoring alerts the team to a potential issue, observability helps the team detect and solve the root cause of the issue.
Monitoring tells you when something is wrong, while observability enables you to understand why.
Read this article to answers following question
- What is observability?
- What are the pillars of observability?
- Relationship Between Observability and Monitoring
What are the pillar of observability?
Monitoring, logs and Tracing
What is the difference between Continuous Delivery and Continuous Deployment?
Pipeline Stages
SourceCheck-in source code
Build
- Compile code
- Unit tests
- Create Artifact
Test
- Integration test with other systems
- Load testingUI Tests
- Penetration testing
Prod
- Deployment to the production environments
Tell me about the challenge you face with DevOps
There are multiple challenges in DevOps
Continuously adapt to changing landscape
- New toolsNew processes and technologies
Solution: COE establish standard toolset, Careem CICD Framework
Developers unwilling to provide support
Solution: Rotation, incentives
Takes months/years to ramp up
Solution: Utilize vendor training, workshops
Resistance to change
Solution: Culture training
What are the key metrics you measure in DevOps
- Deployment frequency
- Lead time of changes
- Time to restore service
- Change failture rate
- Operational Performancereliability
How do you implement security in your DevOps Pipeline
SAST (Source Code Analysis Tools) - SonarQube, Codacy, Veracode and Teller
SCA (Software Component analysis)- Sonar, Dependabot, FOSSA, Veracode, WhiteSource, Synopsys Black Duck, Snyk, Checkmarx
IAST (Interactive Application Security Testing) - Contrast Security Assess or Synopsys Seeker
DAST (Dynamic Application Security Testing) - Netsparker, Burp Suite Enterprise, OWASP ZAP, HCL AppScan
Is Infrastructure as Code necessary for DevOps Pipeline?
Easier to change/version template than commands
Control and track changes to the infrastructure
How will you implement change in multiple AWS account?
A central account with cross-account roles
AWS stack-set to create cloud formation stack in each account
ECS Agent in each account where they deploy
What areas DevOps deals with
- Continuous Integration
- Continuous Delivery
- Infrastructure as Code
- Automation (Chef, puppet, ElasticBeanstalk)
- Monitoring and Logging
- Communication and Collaboration
- Security
Six advantages of cloud computing
- Trade fixed expense for variable expense
- Benefit from massive economies of scale
- Stop guessing capacity
- Increase speed and agility
- Stop spending money running and maintaining data centers
- Go global in minutes
What parameter you choose to evaluate tools or cloud service
- How are you going to scale it
- How are you going to secure it
- How you make application highly available
- How are you going to cost optimize it
- Limitation of the service