CDL-Slides Flashcards

Question 1

Q

Define Digital Transformation

Answer

A

The degree by which org leverage cloud technology to improve operations, workflows, and infrastructure to become more agile, efficient, and competitive in the digital age.

Question 2

Q

Define Cloud Computing

Answer

A

The practice of using a network of remote servers (computers), to store, manage, and process data versus a local or personal server (computer)

Question 3

Q

When hosting your infrastructure on-premis, what are you responsible for managing? What level of risk does this approach present?

Answer

A

You manage:
- real estate
- actual servers + maintenance and upgrades
-IT personnel

High level of security but you bear all risk

Question 4

Q

When a cloud provider manages your infrastructure, what are they generally responsible for? What level of risk does this approach present?

Answer

A

They assume responsibility of real estate, IT staffing, and servers.

Still secure, risk depends on SRM and type of cloud service

Question 5

Q

What is the evolution of computing to the cloud?

Answer

A

1) Dedicated Servers 2) Virtual Private servers 3) Shared hosting 4) Cloud Hosting

Question 6

Q

Define Cloud Hosting and its benefits.

Answer

A

Cloud hosting is a grouping/system of physical machines abstracted into cloud services.

Benefits: Cost effective, scalable, secure, flexible, and highly configurable.

Question 7

Q

Define a dedicated server. What are its limitations vs benefits?

Answer

A

One physical machine hosted on sight for a single business that runs a single web-app/site.

Pro: Highest security
Cons: Expensive, high maintenance

Question 8

Q

Define a Virtual Private Server. What are its limitations vs benefits?

Answer

A

One physical machine dedicated to a single business, but is broken down into sub-machines via virtualization.

Pro: Runs multiple web-app/sites
Cons:

Question 9

Q

Define Shared Hosting. What are its limitations vs benefits?

Answer

A

One machine shared by hundreds of businesses.

Pros: Very cheap
Cons: Very limited - banks on tenants under utilizing their resources.

Question 10

Q

What is a Cloud Service Provider?

Answer

A

A company that provides multiple cloud services, of which can be linked together to create cloud architectures.

Eg: Cloud CDN + VPC + CE + Cloud Storage + Cloud SQL, etc

Question 11

Q

What is Google’s first GCP service?

Answer

A

App Engine in 2008

Question 12

Q

What are the 7 benefits of cloud computing, regardless of provider? (Not on exam, but important)

Answer

A

On-demand (PAYG) Pricing
Global - launch workloads wherever in minutes.
Security - Physical security manage by providers AND cloud services are secure by default AND ability to implement granular configuration/control
Reliability - Back up, disaster recover, data replication, and fault tolerance.
Scalability - Increase or decrease resources on-demand (e.g., machines, compute, or storage)
Elastic - Automate scaling during spikes and drop on-demand (e.g., peek events)
Current Hardware- Software always patched, upgraded, and replaced without interruption.

Question 13

Q

What 4 services contribute to reliability?

Answer

A

Back up
Data replication
DIsaster Recovery
Fault tolerance.

Question 14

Q

What are Google’s 4 major cloud computing services?

Answer

A

Compute
Networking
Storage
Databases.

Question 15

Q

What are the 3 types of cloud computing services on the Cloud Pyramid and who are their end users?

Answer

A

1 (Top) - SaaS / Clients, End users
2 (Middle) - PaaS / Developers
3 (Bottom) - IaaS / Admins

Question 16

Q

What benefit does PaaS offer developers?

Answer

A

They do not have to worry about
1. provisioning - obtaining necessary resources (servers, VM, cloud resources)
2. configuring - fine tuning and adopting those resources to work properly.
3. Understanding underlying hardware OR OS

Question 17

Q

What benefits do IaaS provide Admins?

Answer

A

They do not have to worry about:
1. Data center + Real estate
2. Staffing
3. Maintenance and hardware refresh

Question 18

Q

What is a Shared Responsibility Model?

Answer

A

A visualization that describes what cloud providers versus end users are responsible for.

Each provider has a specific SRM

Question 19

Q

Within the SRM who has the least responsibility? The most? Who is in the middle?

Answer

A

Least - SaaS
Most - IaaS
Middle - PaaS

Review image.

Question 20

Q

What is in the cloud versus of the cloud?

Answer

A

In the cloud - If you can configure or store it, then most likely you are responsible.

Of the cloud - If you cannot configure/store, then most likely you are not responsible (cloud provider is)

Question 21

Q

What are customers always responsible for in the SRM?

Answer

A

Data
Configuring access controls via permissions

Question 22

Q

Define FaaS

Answer

A

A serverless computing service that allows developers to build, run, and manage applications without worrying about underlying infrastructure.

Devs only pays for compute time

Question 23

Q

Within SRM, describe the different responsibilities of parties when using Bare Metal (Compute Engine) / IaaS

Answer

A

Client: OS Host Configuration + Hypervisor

Provider: Physical machine only

Question 24

Q

Within SRM, describe the different responsibilities between parties when using Virtual Machine (Compute Engine) / IaaS

Answer

A

Client: Guest OS Configuration, Container Runtime,

CSP - hardware, storage, networking.

Question 25

Q

Within SRM, describe the different responsibilities between parties when using GKE/Containers / IaaS

Answer

A

Client: Configuration, deployment, and storage of containers.

Google: OS, Hypervisor (docker daemon?), Container Runtime

Question 26

Q

Within SRM, describe the different responsibilities between parties when using Managed Platforms, like App Engine / IaaS

Answer

A

Client: Code, deployment strategies, environment configuration, and associated services

Google: Servers, OS, Networking, Storage

Question 27

Q

Within SRM, describe the different responsibilities between parties when using SaaS?

Answer

A

Client: Content, files, access controls

Google: Servers, OS, Networking, Storage, Security

Question 28

Q

Within SRM, describe the different responsibilities between parties when using FaaS, such as Cloud Functions?

Answer

A

Client: Uploading code

Google: Basically everything, deployment, container runtime, networking, storage, security, server

Question 29

Q

What 4 cloud services are needed to run SaaS?

Answer

A

Compute, storage, database, cloud networking (VPC, subnets, etc.)

Question 30

Q

Can VM be both sole and multi-tenant?

Answer

A

Yes

Sole-tenant - When you are the only person using that specific server, machine

Multi-Tenant - when multiple tenants are using host machine/server

Question 31

Q

What are the 3 different Cloud Computing Deployment models?

Answer

A

Public Cloud (cloud native)
Private Cloud (on-prem)
Hybrid Cloud (on-prem + native)

Question 32

Q

Define Public Cloud (aka cloud native).

Answer

A

Use to describe when everything is built on the cloud

Question 33

Q

Define Private Cloud

Answer

A

AKA, On-premise, when everything is built on company datacenters.

Question 34

Q

Define Hybrid Cloud. Whats a use case?

Answer

A

The use of on-prem and cloud providers (e.g., moving data to the cloud)

Question 35

Q

Define Cross-Cloud

Answer

A

AKA, multi-cloud, when you are using and running workloads across multiple cloud providers

E.g: GCP Anthos

Question 36

Q

What types of clients tend to use Cloud?

Answer

A

Start ups

Question 37

Q

What types of clients tend to use Hybrid?

Answer

A

Banks, FinTech, Professional services, legacy on-prem users.

Why? BC data protections and privacy due to nature of data

Question 38

Q

What type of clients tend to use on-premise?

Answer

A

PubSec, Gov, Hospitals, Large enterprises with heavy regulations (insurance)

Question 39

Q

What are the different costs associated with CAPEX (on-prem) versis OPEX (GCP)?

Answer

A

CAPEX: Physical costs & software licenses

OPEX: Subscription costs and operational billing metrics (compute, storage, networking, etc.)

Question 40

Q

Define and explain difference costs between versus CAPEX and OPEX?

Answer

A

CAPEX (software license fees)- Upfront spending on physical infrastructure, such as servers, storage (hard drives), network (routers, cables, switches), backup/archive, disaster recovery, datacenter (rent, security, cooling), and IT staff

OPEX (subscription fees) - Non-physical costs related to operations, such as Software leasing and customizations/features, cloud support, training staff on cloud services, and cloud metrics (e.g., compute and storage usage)

Question 41

Q

What are the benefits/limitations between CAPEX and OPEX?

Answer

A

CAPEX - Deduct expenses from tax bill. CON: You have to guess upfront what you plan to spend.

OPEX: You can try a product/service without investing in equipment.

Question 42

Q

Define Availability. Provide an example.

Answer

A

The ability of your service to remain available (operational) by ensuring there is no single point of failure and/or ensuring a certain level or performance.

Ex: Cloud load balancing - The distribution of traffic to multiple servers in one or more data center. Running your workloads across multiple zones ensure that if 1 or 2 zones fail, the load balancer will rout traffic to the datacenter still operational.

Question 43

Q

Define Scalability, and explain the difference between vertical and horizontal scaling.

Answer

A

Your ability to increase your capacity based on increased demand or traffic, memory or computing power.

Vertical (scaling up) - Upgrade to bigger server.

Horizontal (scaling out) - Adding more of the same server of the same size, and then distributing workloads across those machines.

Question 44

Q

Define Elasticity

Answer

A

The ability to increase/decrease capacity based on current demand of traffic, memory, and computing power (happens automatically versus scalability)

NOTE: Vertical scaling is harder for traditional architectures, so you’ll generally only see horizontal scaling described with elasticity.

Question 45

Q

Define fault tolerance. Provide an example.

Answer

A

The ability for your service to ensure this is no single point of failure, focused on preventing chance of failure.

Eg: Having a secondary, redundant, database where all changes are synced automatically and remain on stand-by. Think B/G environment.

GCP Service: Cloud DNS - A service that detects a failing primary system and fail-over to a standy-by, secondary system.

Question 46

Q

Define horizontal scaling, and describe the difference between scaling OUT vs IN

Answer

A

The ability to increase/decrease capacity based on current demand of traffic, memory, and computing power.

Out - When you add more servers of the same size.

In - When you remove more servers of the same size.

NOTE:

Question 47

Q

How is elasticity achieved automatically with GCP?

Answer

A

Via Managed Instance Groups (MIGs) - a defined schedule that automatically increase/decrease capacity in response to a demand.

Question 48

Q

Define fail over. Which cloud concept is it associated with?

Answer

A

A operational plan to shift traffic to a redundant, secondary system in case the primary system fails.

E.g., Cloud DNS

Question 49

Q

Define High Durability

Answer

A

Your ability to RECOVER and PREVENT the loss of data from a disaster.

Question 50

Q

Define Disaster Recovery

Answer

A

Solutions that recover data from a disaster.

Do you have a back up? How fast can you restore that backup? Does your back up still work? How do you ensure current live data is not corrupt?

Question 51

Q

Explain the pros vs cons of Dedicated Computing

Answer

A

Pros: Guarantee of
- security,
-privacy,
- full utility of underlying resources.

*Note: Based on your capacity/ability to configure.

Cons:
- Guess capacity
- Over pay for underutilized server
- Cannot vertically scale (needs manual migration)
- Replacing servers are difficult
- Limited by host oS
- Multiple apps compete on resource sharing

Question 52

Q

What is a Dedicated Machine (single node) use case?

Answer

A

A single server used by one client to run workloads. Server space is not shared with others.

Use case: high traffic websites

Question 53

Q

Virtual Machines (running a machine within a machine) - What are the pros vs cons?

Answer

A

Pros:
-Run multiple VMs on one machine.
- Most common/popular compute options bc people are most comfortable with VMs
- Cost effective - you pay a fraction of the server space
- Easy to vertically or horizontally scale
- Easy to export/import images.

Cons:
- Pay for underutilized VMs
- Limited by guest OS
- Resource conflicts since server is shared by multiple tenants

Question 54

Q

Define hypervisor.

Answer

A

It is the software layer that lets you run VMs (see image)

Question 55

Q

Explain the pros vs cons of Containers

Answer

A

Pros:
- Cost effective bc you can maximize utilization
- Containers share the same underlying OS, so they are more efficient than multiple VMs
- No resource conflicts because multiple apps can run side by side without being limited to the same OS requirements.

Cons:
- More work to maintain

Question 56

Q

Define a Docker Deamon. What is its relation to Hypervisor?

Answer

A

DD is the name of the software layer that lets you run multiple containers.

Similar to Hypervisor in that they both function as software layers, except hypervisors apply to VMs.

Question 57

Q

Explain pro vs con of Functions

Answer

A

Pros:
- Cost effective - pay as you go
- All you need to do is upload code/runtime and data
- No responsibility for OS, VMs, etc.

Cons:
- Cold start - the idea that VMs have to start up and therefore takes time to run.

Question 58

Q

What is the 4 step evolution of cloud computing?

Answer

A

1) Dedicated –> 2) VMs –> 3) Containers –> 4) Functions (FaaS)

Question 59

Q

Define Global Infrastructure.

Answer

A

The global presence of datacenters, networking, and cloud resources available to clients.

Google facts:
25 regions
76 zones
144 Network Edge Locations
200+ Countries

Question 60

Q

Define regions

Answer

A

Independent geographic area that consist of zones. Regions are comprised of at least 3 zones.

GCP has 25 regions

Question 61

Q

Define Edge Network. What is its purpose?

Answer

A

The practice of having compute and data storage resources as close to the end user.

The purpose is to deliver the lowest latency and save bandwidth.

Question 62

Q

What are the 3 types of edge networks?

Answer

A

Edge PoP
CDN Pop
Cloud media edge

Question 63

Q

Define PoP. What is its relation to Edge Networks?

Answer

A

PoPs are intermediate locations between a GCP region and the end user.

User –> PoP –> GCP datacenter

PoPs can be a 3rd party datacenter or a collection of hardware.

Question 64

Q

Define Edge PoP.

Answer

A

An edge network location where a user can quickly enter (in-gress) the GCP network for accelerated access to cloud resources.

Answer 65

A

An edge network location that serves (e-gress) resources so that they load fast for end user, such as:

Cached websites,
files,
assets

Answer 66

A

A edge network location that is specialized for the delivery of media, such as video content.

Answer 67

A

Zone - a physical location that is made up of one or more datacenter. Zones comprise regions. OR a deployment area for workloads within a region.

DC - A physical building that contains hundreds/thousands of computers/servers.

Note:
DC are usually isolated from each other but close enough to delivery low latency.

Common practice to run workloads across 3 zones – which guarantees Fault Tolerance & High Availability.

Answer 68

A

Zonal resource
Regional resource
Multi-regional resource
Global Service
Internal services

Answer 69

A

A deployment option where resources reside in a SINGLE ZONE in a SINGLE REGION.

Answer 70

A

A deployment option where resources redised in MULTIPLE ZONES in a SINGLE REGION.

Answer 71

A

A deployment option in which resources resided across MULTIPLE SPECIFIC ZONES.

Answer 72

A

Deployment option in which resources reside GLOBALLY and regions + zones are ABSTRACTED away.

Answer 73

A

Are internal services used by other services, which you do not interact with and are managed by Google.

Eg: Spanner, Colossus, Bord, Chubby

Answer 74

A

The physical or geo location of where an organization’s cloud resources reside.
Regulatory/compliance boundaries that strictly define the data residency of where cloud can be used in GCP.

Answer 75

A

Assured Workloads - Allows you to apply security controls to an environment.
- Primary use case is DR
- Personnel access controls based on attributes
- Personnel support case ownership based on attributes (eg, US support only)
- Encryption

Answer 76

A

Resource location restriction

Said differently, you are applying location restriction to reaources

Answer 77

A

Provides DIRECT PHYSICAL CONNECTION betwen you on-prem network and GCP’s network.

Dedicated
Partner

Answer 78

A

Dedicated - The use of a C-LOCATION facility to provide a DIRECT CONNECTION between on-prem and GCP network locations.
- 10 MBps to 200 Gbps

Partner - The use of a trusted 3rd party to provide a DIRECT CONNECTION between on-prem network and GCP’s network.
-50 Mbps to 10 Gbps

Answer 79

A

A rental DC where equipment, space, and bandwidth are available for rent.

Used to provide Dedicated Cloud Interconnect services.

Answer 80

A

HIPPA
FedRAMP
FIPS 140-2
CJIS

Answer 81

A

Federal Risk and Authorization Management Program.

A standardized approach to security assessment, authorization, and continuous monitoring for cloud S/P.

Answer 82

A

When a CSP offers a isolated region to run FedRAMP workloads.

Cons:
higher operational costs
degraded service offerings
lower service availability

GCP alternative is to run workloads within GCP’s usual regional DC – mitigates GovClouds limitations.

Answer 83

A

Latency - the TIME DELAY between to physical systems.

Lag - the NOTICEABLE DELAY between the actions of input and reactions of the server sent back to client. Think video games.

Answer 84

A

Inter-regional - TRIPLE DIGIT (eg: 500ms) latency btwn regions.

Inter-zonal - DOUBLE DIGIT (eg: 10ms) latency between zones within a region.

Answer 85

A

The global phenomenon of technology life cycles.

Google argues we are in the IT/ML/AI (cloud technology) wave – expansion and boom.

Answer 86

A

Describes when a company abandons old technology for new technology without guarantee of success believing that its survival hinges on its Digital Transformation.

Motivated by fear

Answer 87

A

The THROUGHPUT/SPEED by which a computer completes a computational task.

GCP P/S:
Xeon (cloud) CPU - Think Compute Engine
Tensor Computing - 50x faster - Think Cloud TPU
Quantum Computing - 100 million x faster - Think Google Quantum AI

Answer 88

A

The adoption of digital technology to transform services or businesses.

Eg:
Going paperless
Adopting cloud technology

Answer 89

A

Infra Modernization
Business applications platform portfolio
App Modernization
DB and Storage solutions
Smart Analytics
AI
Security

Answer 90

A

The replacement of legacy (old) hardware and software systems with cloud (new) solutions.

Pros:
- Adoption of hybrid architectures
- Infrastructure mobility - can mix and max best cloud service offering for unique use case.

Anthos

Answer 91

A

A CSP’s well-documented, robust, standardized APIs offered across all cloud services.

Pros:
Permits orgs to focus on configuration & interconnections of various systems vs having to build their own systems.

Cloud SDK
Cloud API
Cloud CLI
Google Cloud Documentation

Answer 92

A

The building of web-applications ON-TOP of cloud services.

Pros:
Global delivery
Rapid iteration
Automated deployment pipelines,
AI-powered code review
Easy staging and testing of features.
Testing in-product and feature rollback
Apps = Durable + Available (even in case of regional failure)

App Engine - To migrate web-app all you need to do is upload code, GCP takes care of the rest.

Answer 93

A

CSP solutions that ensure data durability, migration, and data security.

Pros:
Guaranteed SLAs

Cloud Storage - object storage, 99.5% SLA availability.

You can always lose and rewrite code, but you cannot recover lost data

Answer 94

A

The storage of data on cloud services.

Pro: The ability to leverage BigData and BI – assisted by AI – to help analyze data.

Looker - A data exploration and discovery BI platform.

Answer 95

A

AI is the development of computer systems that can perform human tasks/functions.

Pro:
Can analyze major data sets to produce new data

Lower cost of adoption

Vertex AI - A unified platform for AI, ML, DL, and AutoML.

TensorFlow - A deep learning framework.

Answer 96

A

Cloud offerings with mechanisms for Security, Governance, and Compliance.

Pro:
- CSP are continually developing and innovating security offerings at the project and org level (not merely service level)
- Quickly audit and apply security controls to retain compliance

IAM - Role based access controls and user management

BeyondCorp - ZTM framework

Security Command Center - Centralized visibility and control

Answer 97

A

A s oftware development kit is a collection of software development tools in one installable package.

Same function as the GCP console, except you use command line.

SDCs are offered in various programming languages.

Answer 98

A

A web-based, unified console to build, manage, and monitor all GCP services.

An alternative to command-line tools.

Answer 99

A

CLI = Command line interface.

Allows you to process commands to a computer program as lines of text via a terminal or command-line interface shell.

Answer 100

A

A free online environment within GCP console that allows you to:
1) Manage infra via command line access
2) Code dev via online code editor

Answer 101

A

A project is a logical grouping of resources. All cloud resources MUST belong to a project.

Resources can be compute, storage, networking, etc.

Answer 102

A

Settings
Permissions
Medadata

Answer 103

A

1) Shared VPC
2) VPC Networking Peering

Answer 104

A

1) Project name - user created
2) Project ID - user or GCP provided (cannot be reused if project is deleted)
3) Project # - GCP provides

They are important because they service as identifiers in certain command lines and API calls.

Answer 105

A

Yes - via communication thru internal network (subject to regional and zonal rules)

Answer 106

A

Each project is associated with ONE billing account.

Multiple projects can have their resources usage linked to the same billing account.

Answer 107

A

Folders are the logical grouping of several projects that share COMMON IAM permissions.

Use case: To isolate departments or different environments.

Folders sit above projects, but below the Org level.

Answer 108

A

A whitepaper that determines an orgs readiness to adopt GCP.

Value - 1) helps fill in knowledge gaps 2) Develop new org & personnel competencies

Answer 109

A

Learn, Lead, Scale, & Secure

Answer 110

A

Tactical –> Strategic –> Transformational

Answer 111

A

A matrix of themes and phases

Answer 112

A

Epics are WORKSTREAMS to scope and structure cloud adoption

Answer 113

A

1) Pertains to the QUALITY and SCALE of learning and development programs to upskill your tech staff.

2) An orgs ability to AUGMENT IT staff with experienced partners.

Who is engaged?
How widespread is that engagement?
How concerted are the orgs efforts?
How effective are the results?

Answer 114

A

1) The extent of executive support and mandates for IT teams to migrate to the cloud AND
2) The degree to which IT teams are cross-functional, collaborative, and self-motivated.

Key questions:
Team structure? How?
Do they have exec sponsorship?
How are cloud projects budgeted, governed, assessed?

Answer 115

A

Pertains to the extent by which a org uses CLOUD-NATIVE services to reduce operational overhead AND automate manual processes/policies.

Questions:
How are cloud-based services provisioned?
How is capacity for workloads allocated?
How are app updates managed?

Answer 116

A

Pertains to an org’s capability to protect services from unathorized/inappropriate access using a 1) multi-layered and 2) identity-centric (IAM +ZT) security model.

Note: Dependent on maturity of prior 3 themes – Learn, Lead, and Scale.

Questions:
What controls are in place?
What tech is used?
What strategies govern the whole?

Answer 117

A

A short-term migration strategy focused on quick wins – reducing costs + minimal disruption - but without a coherent, long term plan.

Implication - No long term strategy or solution to provision for scale.

Answer 118

A

Describes a maturity stage in which workloads are designed and developed with future needs and scale in mind. A broader cloud vision.

Pros:
- People and processes are embracing change and are now integral to adoption strategy.
- IT teams are efficiently and effectively increasing cloud value to run business operations.

Answer 119

A

Describes a maturity stated in which an orgs cloud operations are functioning smoothly, with its primary goal on INTEGRATING data and insights working in the cloud.

Answer 120

A

IT is no longer a costs center, but a business partner
Existing data is transparently shared; new data is collected and analyzed.
Predictive and prescriptive analytics via ML is leveraged.
People + processes are transformed which further facilitates tech changes.

Answer 121

A

Provides a matrix up themes and phases that helps your org pinpoint it location on the cloud adoption journey.

Answer 122

A

Epics are workstreams that scope and structure cloud adoption.

They are used once you have determined your orgs location on the Cloud Maturity Scale.

Note:
- Epics do not over lap
- Epics are aligned to manageable groups of stakeholders
- Epics can be broken down into individual user stories.

Answer 123

A

Programs are a logical grouping of Epics that correlate to themes that allow you to focus on specific adoption efforts.

Eg:

Learn - training programs
Lead - change management programs
Scale - Cloud Operational Model
Secure - Secure Account Set up

Answer 124

A

A human resource assigned to provide support and advisory services as part of your premium subscription.
`\

Answer 125

A

A multiple choice form that assesses your orgs location within the GCAF - Learn, Lead, Scale, Secure

Answer 126

A

Runtime is the time from start to finish of when a program is running.

OS are the environments in which runtimes operate.

Brainscape's Knowledge GenomeTM

CDL-Slides Flashcards

Brainscape's Knowledge Genome^TM