These questions are combined in order to prepare to the exam. All answers are not 100% guaranteed (there is no official list Q&A from Google) but were used to prepare (takes about 5 hrs with googling of contexts for some questions) and successfully pass real exam  (in under 45 minutes while exam is limited to 120 minutes) which contains 50 questions.

Other sites either have non-verified answers or have long discussions on which answer is correct. This page accumulates the best answers as the outcome of such discussions.

Question #1

Your company's test suite is a custom C++ application that runs tests throughout each day on Linux virtual machines. The full test suite takes several hours to complete, running on a limited number of on-premises servers reserved for testing. Your company wants to move the testing infrastructure to the cloud, to reduce the amount of time it takes to fully test a change to the system, while changing the tests as little as possible.

Which cloud infrastructure should you recommend?

  • A. Google Compute Engine unmanaged instance groups and Network Load Balancer
  • B. Google Compute Engine managed instance groups with auto-scaling
  • C. Google Cloud Dataproc to run Apache Hadoop jobs to process each test
  • D. Google App Engine with Google StackDriver for logging

B. Google Compute Engine managed instance groups with auto-scaling

Question #2

A lead software engineer tells you that his new application design uses websockets and HTTP sessions that are not distributed across the web servers. You want to help him ensure his application will run properly on Google Cloud Platform.

What should you do?

  • A. Help the engineer to convert his websocket code to use HTTP streaming
  • B. Review the encryption requirements for websocket connections with the security team
  • C. Meet with the cloud operations team and the engineer to discuss load balancer options
  • D. Help the engineer redesign the application to use a distributed user session service that does not rely on websockets and HTTP sessions.

C. Meet with the cloud operations team and the engineer to discuss load balancer options

Question #3

The application reliability team at your company this added a debug feature to their backend service to send all server events to Google Cloud Storage for eventual analysis. The event records are at least 50 KB and at most 15 MB and are expected to peak at 3,000 events per second. You want to minimize data loss.

Which process should you implement?

  • A. "¢ Append metadata to file body "¢ Compress individual files "¢ Name files with serverName "" Timestamp "¢ Create a new bucket if bucket is older than 1 hour and save individual files to the new bucket. Otherwise, save files to existing bucket.
  • B. ¢ Batch every 10,000 events with a single manifest file for metadata "¢ Compress event files and manifest file into a single archive file "¢ Name files using serverName "" EventSequence "¢ Create a new bucket if bucket is older than 1 day and save the single archive file to the new bucket. Otherwise, save the single archive file to existing bucket.
  • C. "¢ Compress individual files "¢ Name files with serverName "" EventSequence "¢ Save files to one bucket "¢ Set custom metadata headers for each object after saving
  • D. "¢ Append metadata to file body "¢ Compress individual files "¢ Name files with a random prefix pattern "¢ Save files to one bucket

D. "¢ Append metadata to file body "¢ Compress individual files "¢ Name files with a random prefix pattern "¢ Save files to one bucket

The names should not go in ascending sequence: Need to make them random

Question #4

A recent audit revealed that a new network was created in your GCP project. In this network, a GCE instance has an SSH port open to the world. You want to discover this network's origin.

What should you do?

  • A. Search for Create VM entry in the Stackdriver alerting console
  • B. Navigate to the Activity page in the Home section. Set category to Data Access and search for Create VM entry
  • C. In the Logging section of the console, specify GCE Network as the logging section. Search for the Create Insert entry
  • D. Connect to the GCE instance using project SSH keys. Identify previous logins in system logs, and match these with the project owners list.

C. In the Logging section of the console, specify GCE Network as the logging section. Search for the Create Insert entry

Question #5

You want to make a copy of a production Linux virtual machine in the US-Central region. You want to manage and replace the copy easily if there are changes on the production virtual machine. You will deploy the copy as a new instance in a different project in the US-East region.

What steps must you take?

  • A. Use the Linux dd and netcat commands to copy and stream the root disk contents to a new virtual machine instance in the US-East region.
  • B. Create a snapshot of the root disk and select the snapshot as the root disk when you create a new virtual machine instance in the US-East region.
  • C. Create an image file from the root disk with Linux dd command, create a new virtual machine instance in the US-East region
  • D. Create a snapshot of the root disk, create an image file in Google Cloud Storage from the snapshot, and create a new virtual machine instance in the US-East region using the image file the root disk.

D. Create a snapshot of the root disk, create an image file in Google Cloud Storage from the snapshot, and create a new virtual machine instance in the US-East region using the image file the root disk.

Question #6

Your company runs several databases on a single MySQL instance. They need to take backups of a specific database at regular intervals. The backup activity needs to complete as quickly as possible and cannot be allowed to impact disk performance.

How should you configure the storage?

  • A. Configure a cron job to use the gcloud tool to take regular backups using persistent disk snapshots.
  • B. Mount a Local SSD volume as the backup location. After the backup is complete, use gsutil to move the backup to Google Cloud Storage.
  • C. Use gcsfise to mount a Google Cloud Storage bucket as a volume directly on the instance and write backups to the mounted location using mysqldump.
  • D. Mount additional persistent disk volumes onto each virtual machine (VM) instance in a RAID10 array and use LVM to create snapshots to send to Cloud Storage

C. Use gcsfise to mount a Google Cloud Storage bucket as a volume directly on the instance and write backups to the mounted location using mysqldump.

A. Requires further work on retrieving the snapshot and can affect disk performance. B. You cannot attach local SSD if an instance is already running. Total time would be 'backup to SSD' + 'copy data to GCS'. Also if you stop the VM instance before the dump is transferred to GCS, the dump will be lost. C. Recommended by Google, faster than B (because single action). https://cloud.google.com/storage/docs/gcs-fuse D. You cannot configure any RAID config on persistent disks. You can only choose Zonal or Regional (Raid 1).

Question #7

You are helping the QA team to roll out a new load-testing tool to test the scalability of your primary cloud services that run on Google Compute Engine with Cloud Bigtable.

Which three requirements should they include? Choose 3 answers.

  • A. Ensure that the load tests validate the performance of Cloud Bigtable
  • B. Create a separate Google Cloud project to use for the load-testing environment
  • C. Schedule the load-testing tool to regularly run against the production environment
  • D. Ensure all third-party systems your services use is capable of handling high load
  • E. Instrument the production services to record every transaction for replay by the load-testing tool
  • F. Instrument the load-testing tool and the target services with detailed logging and metrics collection

B. Create a separate Google Cloud project to use for the load-testing environment

E. Instrument the production services to record every transaction for replay by the load-testing tool

F. Instrument the load-testing tool and the target services with detailed logging and metrics collection

Question #8

Your customer is moving their corporate applications to Google Cloud Platform. The security team wants detailed visibility of all projects in the organization. You provision the Google Cloud Resource Manager and set up yourself as the org admin.

What Google Cloud Identity and Access Management (Cloud IAM) roles should you give to the security team?

  • A. Org viewer, project owner
  • B. Org viewer, project viewer
  • C. Org admin, project browser
  • D. Project owner, network admin

B. Org viewer, project viewer

Provide least required permission. The team should not be able to change anything, only browse.

Question #9

Your company places a high value on being responsive and meeting customer needs quickly. Their primary business objectives are release speed and agility. You want to reduce the chance of security errors being accidentally introduced.

Which two actions can you take? Choose 2 answers.

  • A. Ensure every code check-in is peer reviewed by a security SME
  • B. Use source code security analyzers as part of the CI/CD pipeline
  • C. Ensure you have stubs to unit test all interfaces between components
  • D. Enable code signing and a trusted binary repository integrated with your CI/CD pipeline
  • E. Run a vulnerability security scanner as part of your continuous-integration /continuous-delivery (CI/CD) pipeline

B. Use source code security analyzers as part of the CI/CD pipeline

E. Run a vulnerability security scanner as part of your continuous-integration /continuous-delivery (CI/CD) pipeline

Question #10

You want to enable your running Google Kubernetes Engine cluster to scale as demand for your application changes.

What should you do?

  • A. Add additional nodes to your Kubernetes Engine cluster using the following command: gcloud container clusters resize CLUSTER_Name "" -size 10
  • B. Add a tag to the instances in the cluster with the following command: gcloud compute instances add-tags INSTANCE - -tags enable- autoscaling max-nodes-10
  • C. Update the existing Kubernetes Engine cluster with the following command: gcloud alpha container clusters update mycluster - -enable- autoscaling - -min-nodes=1 - -max-nodes=10
  • D. Create a new Kubernetes Engine cluster with the following command: gcloud alpha container clusters create mycluster - -enable- autoscaling - -min-nodes=1 - -max-nodes=10 and redeploy your application

C. Update the existing Kubernetes Engine cluster with the following command: gcloud alpha container clusters update mycluster --enable- autoscaling --min-nodes=1 --max-nodes=10

Question #11

Your marketing department wants to send out a promotional email campaign. The development team wants to minimize direct operation management. They project a wide range of possible customer responses, from 100 to 500,000 click-through per day. The link leads to a simple website that explains the promotion and collects user information and preferences

Which infrastructure should you recommend? Choose 2 answers

  • A. Use Google App Engine to serve the website and Google Cloud Datastore to store user data.
  • B. Use a Google Container Engine cluster to serve the website and store data to persistent disk.
  • C. Use a managed instance group to serve the website and Google Cloud Bigtable to store user data.
  • D. Use a single Compute Engine virtual machine (VM) to host a web server, backend by Google Cloud SQL.

A. Use Google App Engine to serve the website and Google Cloud Datastore to store user data.

C. Use a managed instance group to serve the website and Google Cloud Bigtable to store user data.

Question #12

Your company just finished a rapid lift and shift to Google Compute Engine for your compute needs. You have another 9 months to design and deploy a more cloud-native solution. Specifically, you want a system that is no-ops and auto-scaling.

Which two compute products should you choose? Choose 2 answers.

  • A. Compute Engine with containers
  • B. Google Kubernetes Engine with containers
  • C. Google App Engine Standard Environment
  • D. Compute Engine with custom instance types
  • E. Compute Engine with managed instance groups

B. Google Kubernetes Engine with containers

C. Google App Engine Standard Environment

Question #13

One of your primary business objectives is being able to trust the data stored in your application. You want to log all changes to the application data.

How can you design your logging system to verify authenticity of your logs?

  • A. Write the log concurrently in the cloud and on premises
  • B. Use a SQL database and limit who can modify the log table
  • C. Digitally sign each timestamp and log entry and store the signature
  • D. Create a JSON dump of each log entry and store it in Google Cloud Storage

D. Create a JSON dump of each log entry and store it in Google Cloud Storage

Question #14

Your company has decided to make a major revision of their API in order to create better experiences for their developers. They need to keep the old version of the API available and deployable, while allowing new customers and testers to try out the new API. They want to keep the same SSL and DNS records in place to serve both APIs.

What should they do?

  • A. Configure a new load balancer for the new version of the API
  • B. Reconfigure old clients to use a new endpoint for the new API
  • C. Have the old API forward traffic to the new API based on the path
  • D. Use separate backend pools for each API path behind the load balancer

D. Use separate backend pools for each API path behind the load balancer

Question #15

Your company plans to migrate a multi-petabyte data set to the cloud. The data set must be available 24hrs a day. Your business analysts have experience only with using a SQL interface.

How should you store the data to optimize it for ease of analysis?

  • A. Load data into Google BigQuery
  • B. Insert data into Google Cloud SQL
  • C. Put flat files into Google Cloud Storage
  • D. Stream data into Google Cloud Datastore

A. Load data into Google BigQuery

Question #16

The operations manager asks you for a list of recommended practices that she should consider when migrating a J2EE application to the cloud.

Which three practices should you recommend? Choose 3 answers.

  • A. Port the application code to run on Google App Engine
  • B. Integrate Cloud Dataflow into the application to capture real-time metrics
  • C. Instrument the application with a monitoring tool like Stackdriver Debugger
  • D. Select an automation framework to reliably provision the cloud infrastructure
  • E. Deploy a continuous integration tool with automated testing in a staging environment
  • F. Migrate from MySQL to a managed NoSQL database like Google Cloud Datastore or Bigtable

A. Port the application code to run on Google App Engine

D. Select an automation framework to reliably provision the cloud infrastructure

E. Deploy a continuous integration tool with automated testing in a staging environment

Question #17

A news feed web service has the following code running on Google App Engine. During peak load, users report that they can see news articles they already viewed.

What is the most likely cause of this problem?

import news from flask import Flask, redirect, request from flask.ext.api import status from google.appengine.api import users
app = Flask(_name_) sessions = {} @app.route('/') def homepage():   user = users.get_current_user()   if not user:     return 'Invalid login', status.HTTP_401_UNAUTHORIZED   if user not in sessions:     sessions[user] = {'viewed': []}   news_articles = news.get_new_news(user, sessions[user]['viewed'])   sessions[user]['viewed'] +- [n['id'] for n in news_articles]   return news.render(news_articles) if _name_ == '_main_':   app.run()
  • A. The session variable is local to just a single instance
  • B. The session variable is being overwritten in Cloud Datastore
  • C. The URL of the API needs to be modified to prevent caching
  • D. The HTTP Expires header needs to be set to -1 stop caching

A. The session variable is local to just a single instance

Question #18

An application development team believes their current logging tool will not meet their needs for their new cloud-based product. They want a better tool to capture errors and help them analyze their historical log data. You want to help them find a solution that meets their needs.

What should you do?

  • A. Direct them to download and install the Google StackDriver logging agent
  • B. Send them a list of online resources about logging best practices
  • C. Help them define their requirements and assess viable logging tools
  • D. Help them upgrade their current tool to take advantage of any new features

C. Help them define their requirements and assess viable logging tools

Question #19

You need to reduce the number of unplanned rollbacks of erroneous production deployments in your company's web hosting platform. Improvement to the QA/Test processes accomplished an 80% reduction.

Which additional two approaches can you take to further reduce the rollbacks? Choose 2 answers.

  • A. Introduce a green-blue deployment model
  • B. Replace the QA environment with canary releases
  • C. Fragment the monolithic platform into microservices
  • D. Reduce the platform's dependency on relational database systems
  • E. Replace the platform's relational database systems with a NoSQL database

A. Introduce a green-blue deployment model

C. Fragment the monolithic platform into microservices

Question #20

To reduce costs, the Director of Engineering has required all developers to move their development infrastructure resources from on-premises virtual machines (VMs) to Google Cloud Platform. These resources go through multiple start/stop events during the day and require state to persist. You have been asked to design the process of running a development environment in Google Cloud while providing cost visibility to the finance department.

Which two steps should you take? Choose 2 answers.

  • A. Use the - -no-auto-delete flag on all persistent disks and stop the VM
  • B. Use the - -auto-delete flag on all persistent disks and terminate the VM
  • C. Apply VM CPU utilization label and include it in the BigQuery billing export
  • D. Use Google BigQuery billing export and labels to associate cost to groups
  • E. Store all state into local SSD, snapshot the persistent disks, and terminate the VM
  • F. Store all state in Google Cloud Storage, snapshot the persistent disks, and terminate the VM

A. Use the - -no-auto-delete flag on all persistent disks and stop the VM

D. Use Google BigQuery billing export and labels to associate cost to groups

Question #21

Your company wants to track whether someone is present in a meeting room reserved for a scheduled meeting. There are 1000 meeting rooms across 5 offices on 3 continents. Each room is equipped with a motion sensor that reports its status every second. The data from the motion detector includes only a sensor ID and several different discrete items of information. Analysts will use this data, together with information about account owners and office locations.

Which database type should you use?

  • A. Flat file
  • B. NoSQL
  • C. Relational
  • D. Blobstore

B. NoSQL

To be continued.