Understanding GCP Security & Ops Flashcards
For organizations that build and deploy applications on-premises, there’s a heavy emphasis on _________ to set up and maintain their IT infrastructure. It’s a careful balancing act between underpurchasing and over-purchasing, so a business doesn’t end up with unserved demand or wasted capacity
Capital expenditure
Historically, this cost would include:
* Space and associated costs
● Storage systems
● Networking
● Hardware
● Software
● Security systems
When an organization migrates or builds and deploys applications using cloud services, there’s a
greater emphasis on __________. They’re paying for what they need when they need it.
operational expenditure
(Pay as you go model)
The goals of the cost management
tools that Cloud has are to provide (4 pillars):
Visibility
Accountability
Control
Intelligence
Before organizations can optimize
their cloud costs, they first need to
understand what they’re currently
spending, whether there are any
trends, and what their forecasted
costs are. This means they need
______ into their cloud costs
visibility
Built-in reporting tools
● Custom dashboards
● Pricing calculator
Because cloud spending is
decentralized and variable, it’s
important to establish a culture of
_______ for costs across
the organization. This can be done
by defining clear ownership for
projects and sharing cost views
with the departments and teams
that are using cloud resources.
accountability
Organizations should also have
precise permissions in place to
ensure that only authorized
individuals in an organization have the
power to deploy cloud resources.
Creating budgets and alerts to notify
key stakeholders when spending is
getting off track is an important
practice to keep costs under ______.
control
Organizations can make smart spending decisions with ______ recommendations delivered
by Google Cloud. These are tailored to each organization and help optimize usage, save time on
management, and minimize costs. The recommendations can easily be applied for immediate
cost savings and greater efficiency
intelligent
_____ refers to the data an
organization or an individual has
access to and who they can
share that data with
Privacy
When moving your data to the
cloud, the facility and its employees
only store or process your data. The
data itself remains private
New server builds have a chip, called ____, embedded.
____ checks a machine for integrity every time it boots up
Titan
, Google Cloud
operates a _____model.
This means that every user and
every machine that tries to
access data or services must
strongly authenticate identity
at each stage for each file.
zero-trust
An Identity Access
Management policy, or IAM
policy, is made of three parts:
Who can do what on which resource,
Everything managed in Google Cloud is under a ____ and an _____. The _____ is handled
through Cloud Identity and helps manage user profiles. The ____ is managed through the
Cloud Console and lets administrators see and control Google Cloud resources and permissions.
1) domain
2) organization
A contractual commitment between
the cloud service provider and the
customer. The ____ provides the
baseline level for the quality,
availability, and reliability of that
service. If the baseline service is not
met by the provider, end users and
end customers would be affected.
The cloud provider would incur a cost
usually paid out to the customer.
SLA - Service Level Agreement
A key element within the SLA;
the goal for the cloud service
performance level, shared between
the cloud provider and a customer.
If the service performance meets or
exceeds the ____, it means that end
users, customers, and internal
stakeholders are all happy
SLO - Service level objective
A measure of the service provided.
____often include reliability, latency.
(which means delays in the system),
and errors.
Service level indicator (SLI)
