Understanding GCP Security & Ops Flashcards
For organizations that build and deploy applications on-premises, there’s a heavy emphasis on _________ to set up and maintain their IT infrastructure. It’s a careful balancing act between underpurchasing and over-purchasing, so a business doesn’t end up with unserved demand or wasted capacity
Capital expenditure
Historically, this cost would include: * Space and associated costs ● Storage systems ● Networking ● Hardware ● Software ● Security systems
When an organization migrates or builds and deploys applications using cloud services, there’s a
greater emphasis on __________. They’re paying for what they need when they need it.
operational expenditure
Pay as you go model
The goals of the cost management
tools that Cloud has are to provide (4 pillars):
Visibility
Accountability
Control
Intelligence
Before organizations can optimize their cloud costs, they first need to understand what they’re currently spending, whether there are any trends, and what their forecasted costs are. This means they need \_\_\_\_\_\_ into their cloud costs
visibility
Built-in reporting tools
● Custom dashboards
● Pricing calculator
Because cloud spending is decentralized and variable, it’s important to establish a culture of \_\_\_\_\_\_\_ for costs across the organization. This can be done by defining clear ownership for projects and sharing cost views with the departments and teams that are using cloud resources.
accountability
Organizations should also have precise permissions in place to ensure that only authorized individuals in an organization have the power to deploy cloud resources. Creating budgets and alerts to notify key stakeholders when spending is getting off track is an important practice to keep costs under \_\_\_\_\_\_.
control
Organizations can make smart spending decisions with ______ recommendations delivered
by Google Cloud. These are tailored to each organization and help optimize usage, save time on
management, and minimize costs. The recommendations can easily be applied for immediate
cost savings and greater efficiency
intelligent
_____ refers to the data an
organization or an individual has
access to and who they can
share that data with
Privacy
When moving your data to the
cloud, the facility and its employees
only store or process your data. The
data itself remains private
New server builds have a chip, called ____, embedded.
____ checks a machine for integrity every time it boots up
Titan
, Google Cloud operates a \_\_\_\_\_model. This means that every user and every machine that tries to access data or services must strongly authenticate identity at each stage for each file.
zero-trust
An Identity Access
Management policy, or IAM
policy, is made of three parts:
Who can do what on which resource,
Everything managed in Google Cloud is under a ____ and an _____. The _____ is handled
through Cloud Identity and helps manage user profiles. The ____ is managed through the
Cloud Console and lets administrators see and control Google Cloud resources and permissions.
1) domain
2) organization
A contractual commitment between the cloud service provider and the customer. The \_\_\_\_ provides the baseline level for the quality, availability, and reliability of that service. If the baseline service is not met by the provider, end users and end customers would be affected. The cloud provider would incur a cost usually paid out to the customer.
SLA - Service Level Agreement
A key element within the SLA; the goal for the cloud service performance level, shared between the cloud provider and a customer. If the service performance meets or exceeds the \_\_\_\_, it means that end users, customers, and internal stakeholders are all happy
SLO - Service level objective
A measure of the service provided.
____often include reliability, latency.
(which means delays in the system),
and errors.
Service level indicator (SLI)
