CH 9

Question 1

According to NIST, what are the essential characteristics of cloud computing.

Answer 1

■ On-demand self-service
■ Broad network access
■ Resource pooling
■ Rapid elasticity
■ Measured service

Question 2

What are the 3 basic models for cloud computing?

Answer 2

Infrastructure as a Service, Platform as a Service, Software as a Service

Question 3

is a software and hardware development and project management
methodology that has at least five to seven phases that follow in strict linear order. Each
phase cannot start until the previous phase has been completed.

Answer 3

Waterfall Development Methodology

Question 4

is a software development and project management process where a project is managed
by breaking it up into several stages and involving constant collaboration with stakeholders
and continuous improvement and iteration at every stage.

Answer 4

The Agile Methodology

Question 5

is the outcome of many trusted principles—from software development, manufacturing, and leadership to the information technology value stream.

Answer 5

DevOps

Question 6

is a software development practice where programmers merge
code changes in a central repository multiple times a day

Answer 6

Continuous Integration (CI)

Question 7

sits on
top of CI and provides a way for automating the entire software release process

Answer 7

Continuous Delivery (CD)

Question 8

Serverless is a cloud computing execution model where the cloud provider (AWS, Azure,
Google Cloud, and so on) dynamically manages the allocation and provisioning of servers.
Serverless applications run in stateless containers that are ephemeral and event-triggered
(fully managed by the cloud provider). What is an example of a serverless cloud product?

Answer 8

AWS Lamda

Question 9

List the 3 components of Kubernetes

Answer 9

Master, Node, Pod

Question 10

What is the role of the Master component in Kubernetes

Answer 10

Coordinates all the activities in your cluster (scheduling, scaling, and
deploying applications).

Question 11

A VM or physical server that acts as a worker machine in a Kubernetes cluster.

Answer 11

Node

Question 12

A group of one or more containers with shared storage and networking, including
a specification for how to run the containers.

Answer 12

Pod

Question 13

The ability to enforce network segmentation in container and VM environments is called what?

Answer 13

Microsegmentation

Question 14

is a concept used in recent years to describe how to move security activities
to the start of the development life cycle and have built-in security practices in the CI/CD
pipeline.

Answer 14

DevSecOps

Question 15

a cloud-delivered solution that blocks malicious destinations using DNS.

Answer 15

Cisco Umbrella

Question 16

intercepts and inspects only
requests for risky domains.

Answer 16

Cisco Umbrella secure Internet gateway proxy

Question 17

provides visibility and
compliance checks, protects data against misuse and exfiltration, and provides threat
protections against malware like ransomware.

Answer 17

Cisco Cloudlock (CASB)

Question 18

aggregates and normalizes considerable amounts of NetFlow data to
apply security analytics to detect malicious and suspicious activity.

Answer 18

Cisco Stealthwatch

Question 19

is able to automatically discover the flow of all traffic requests in your
environment by creating a dynamic topology map of all your applications.

Answer 19

AppDynamics Cloud Monitoring (AppD)

Question 20

a solution created by Cisco that utilizes rich traffic flow telemetry to
address critical data center operationality use cases. It uses both hardware and software
agents as telemetry sources and performs advanced analytics on the collected data

Answer 20

Cisco Tetration