






















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
2025 Google Cloud Platform Cloud Digital Leader Exam: Ultimate Study Guide for Certification Success and Expert Tips
Typology: Exams
1 / 30
This page cannot be seen from the preview
Don't miss anything!























1. Identifying Vulnerable Virtual Machines Question: The operating systems of some of your organization's virtual machines may have a security vulnerability. How can your organization most effectively identify all virtual machines that do not have the latest security update? A. View the Security Command Center to identify virtual machines running vulnerable disk images B. View the Compliance Reports Manager to identify and download a recent PCI audit C. View the Security Command Center to identify virtual machines started more than 2 weeks ago D. View the Compliance Reports Manager to identify and download a recent SOC 1 audit Correct Answer: A Rationale: Security Command Center provides a centralized view of the security posture and can identify vulnerabilities by scanning VM disk images, making it the most effective tool for this purpose. 2. Optimizing Windows Server License Cost Question: You are currently managing workloads running on Windows Server for which your company owns the licenses. Your workloads are only needed during working hours. Your Windows Server licenses are up for renewal in a month, and you want to optimize your license cost. What should you do? A. Renew your licenses for 3 years and negotiate reduced infrastructure costs B. Renew your licenses for 2 years with auto-renewal to lower the price C. Migrate the workloads to Compute Engine with a bring-your-own-license (BYOL) model D. Migrate the workloads to Compute Engine with a pay-as-you-go (PAYG) model Correct Answer: D
Rationale: PAYG allows you to only pay for the time resources are actually used, which is ideal for workloads not needed 24/7.
3. Fast Communication Between Distributed VMs Question: Your organization needs extremely fast communication (less than 10 milliseconds) between parts of an application in different VMs. Where should the VMs be located? A. In a single zone within a single region B. In different zones within a single region C. In multiple regions, using one zone per region D. In multiple regions, using multiple zones per region Correct Answer: B Rationale: VMs in different zones within a single region offer redundancy with low latency communication, staying under the 10 ms threshold. 4. Cloud Provider Responsibilities Question: Which two functions does a public cloud provider own? (Choose two.) A. Hardware maintenance B. Infrastructure architecture C. Infrastructure deployment automation D. Hardware capacity management E. Fixing application security issues Correct Answers: A, D Rationale: Public cloud providers are responsible for maintaining physical hardware and ensuring capacity availability. Architecture and deployment are customer responsibilities. 5. Cost-Optimized Rendering Jobs Question: Your SaaS team needs compute for rendering scenes, with jobs being interruptible and under 12 hours. What's the most cost-efficient option? A. Deploy on Compute Engine using preemptible instances B. Use unmanaged instance groups
A. Use Identity-Aware Proxy (IAP) B. Create a Cloud VPN tunnel C. Use Partner Interconnect D. Enable Private Google Access Correct Answer: C Rationale: Partner Interconnect provides a private, dedicated connection for data without touching the public internet.
9. CI/CD Pipeline Storage for Cloud Run Question: Where should you store application images after the CI build step for a Cloud Run deployment? A. Compute Engine image B. Container Registry C. Cloud Storage D. Compute Engine disk Correct Answer: B Rationale: Cloud Run uses container images, and Container Registry is designed for storing and managing these images. 10. Why Choose SaaS Model Question: Why would SaaS be the right cloud service model? A. For balance between flexibility and provider management B. To minimize customer-side management C. To maximize flexibility for the customer D. To shift between flexibility and management as needed Correct Answer: B Rationale: SaaS offloads most responsibilities to the provider, offering minimal management for the customer. 11. Designing for Regional Data Regulations Question: Your organization must store data in a specific region due to regulations but serve it globally. What should you do?
A. Use a regional-only cloud provider B. Use private cloud with global replication C. Choose a cloud provider that ensures data residency D. Use a private cloud in the required region Correct Answer: C Rationale: Public clouds like Google Cloud or AWS can guarantee data residency while allowing global access.
12. Temporary Need for High Compute Power Question: You need high compute resources for two weeks. What is the most cost- effective solution? A. Use a committed use discount B. Buy a powerful computer C. Use a powerful VM without a commitment D. Buy multiple physical machines Correct Answer: C Rationale: Committed use only makes sense for long-term usage. On-demand usage is more cost-efficient short-term. 13. Planning Cloud Infrastructure Costs Question: How should your organization plan cloud infrastructure expenditures? A. Review cloud resource costs frequently B. Review costs annually C. Ignore infrastructure costs if using cloud only D. Involve fewer people than in on-prem planning Correct Answer: A Rationale: Cloud pricing is dynamic and usage-based. Frequent review is essential for cost control. 14. Speeding Up Application Deployments Question: VM-based app upgrades are slow due to OS boot times. How can you speed them up?
A. Coldline storage is for data for which a slow transfer rate is acceptable. B. Standard and Coldline storage have different durability guarantees. C. Standard and Coldline storage use different APIs. D. Coldline storage is for infrequently accessed data. - - correct ans- - D. Coldline storage is for infrequently accessed data. What would provide near-unlimited availability of computing resources without requiring your organization to procure and provision new equipment? A. Public cloud B. Containers C. Private cloud D. Microservices - - correct ans- - A. Public cloud You are a program manager for a team of developers who are building an event-driven application to allow users to follow one another's activities in the app. Each time a user adds himself as a follower of another user, a write occurs in the real-time database. The developers will develop a lightweight piece of code that can respond to database writes and generate a notification to let the appropriate users know that they have gained new followers. The code should integrate with other cloud services such as Pub/Sub, Firebase, and Cloud APIs to streamline the orchestration process. The application requires a platform that automatically manages underlying infrastructure and scales to zero when there is no activity. Which primary compute resource should your developers select, given these requirements? A. Google Kubernetes Engine B. Cloud Functions C. App Engine flexible environment D. Compute Engine - - correct ans- - B. Cloud Functions
Your organization is developing an application that will capture a large amount of data from millions of different sensor devices spread all around the world. Your organization needs a database that is suitable for worldwide, high-speed data storage of a large amount of unstructured data. Which Google Cloud product should your organization choose? A. Firestore B. Cloud Data Fusion C. Cloud SQL D. Cloud Bigtable - - correct ans- - D. Cloud Bigtable Your organization needs to build streaming data pipelines. You don't want to manage the individual servers that do the data processing in the pipelines. Instead, you want a managed service that will automatically scale with the amount of data to be processed.Which Google Cloud product or feature should your organization choose? A. Pub/Sub B. Dataflow C. Data Catalog D. Dataprep by Trifacta - - correct ans- - B. Dataflow Your organization is building an application running in Google Cloud. Currently, software builds, tests, and regular deployments are done manually, but you want to reduce work for the team. Your organization wants to use Google Cloud managed solutions to automate your build, testing, and deployment process. Which Google Cloud product or feature should your organization use? A. Cloud Scheduler B. Cloud Code C. Cloud Build D. Cloud Deployment Manager - - correct ans- - C. Cloud Build
be migrated. Which Google Cloud product should you use to maintain the custom images? A. App Engine flexible environment B. Compute Engine C. App Engine standard environment D. Google Kubernetes Engine - - correct ans- - B. Compute Engine Your organization wants to migrate its data management solutions to Google Cloud because it needs to dynamically scale up or down and to run transactionalSQL queries against historical data at scale. Which Google Cloud product or service should your organization use? A. BigQuery B. Cloud Bigtable C. Pub/Sub D. Cloud Spanner - - correct ans- - D. Cloud Spanner Your organization needs to categorize objects in a large group of static images using machine learning. Which Google Cloud product or service should your organization use? A. BigQuery ML B. AutoML Video Intelligence C. Cloud Vision API D. AutoML Tables - - correct ans- - C. Cloud Vision API Your organization runs all its workloads on Compute Engine virtual machine instances. Your organization has a security requirement: the virtual machines are not allowed to access the public internet. The workloads running on those virtual machines need to access BigQuery and Cloud Storage, using their publicly accessible interfaces, without
violating the security requirement. Which Google Cloud product or feature should your organization use? A. Identity-Aware Proxy B. Cloud NAT (network address translation) C. VPC internal load balancers D. Private Google Access - - correct ans- - D. Private Google Access Could also be B. Cloud NAT Which Google Cloud product is designed to reduce the risks of handling personally identifiable information (PII)? A. Cloud Storage B. Google Cloud Armor C. Cloud Data Loss Prevention D. Secret Manager - - correct ans- - C. Cloud Data Loss Prevention Your organization is migrating to Google Cloud. As part of that effort, it needs to move terabytes of data from on-premises file servers to Cloud Storage. Your organization wants the migration process to be automated and to be managed by Google. Your organization has an existing Dedicated Interconnect connection that it wants to use. Which Google Cloud product or feature should your organization use? A. Storage Transfer Service B. Migrate for Anthos C. BigQuery Data Transfer Service D. Transfer Appliance - - correct ans- - A. Storage Transfer Service
Which Google Cloud product provides a consistent platform for multi-cloud application deployments and extends other Google Cloud services to your organization's environment? A. Google Kubernetes Engine B. Virtual Public Cloud C. Compute Engine D. Anthos - - correct ans- - D. Anthos Your organization is developing an application that will manage payments and online bank accounts located around the world. The most critical requirement for your database is that each transaction is handled consistently. Your organization anticipates almost unlimited growth in the amount of data stored. Which Google Cloud product should your organization choose? A. Cloud SQL B. Cloud Storage C. Firestore D. Cloud Spanner - - correct ans- - D. Cloud Spanner Your organization wants an economical solution to store data such as files, graphical images, and videos and to access and share them securely. Which Google Cloud product or service should your organization use? A. Cloud Storage B. Cloud SQL C. Cloud Spanner D. BigQuery - - correct ans- - A. Cloud Storage Your organization wants to predict the behavior of visitors to its public website. To do that, you have decided to build a machine learning model. Your team has database-
related skills but only basic machine learning skills, and would like to use those database skills. Which Google Cloud product or feature should your organization choose? A. BigQuery ML B. LookML C. TensorFlow D. Cloud SQL - - correct ans- - A. BigQuery ML Your organization needs to restrict access to a Cloud Storage bucket. Only employees who are based in Canada should be allowed to view the contents. What is the most effective and efficient way to satisfy this requirement? A. Deploy the Cloud Storage bucket to a Google Cloud region in Canada B. Configure Google Cloud Armor to allow access to the bucket only from IP addresses based in Canada C. Give each employee who is based in Canada access to the bucket D. Create a group consisting of all Canada-based employees, and give the group access to the bucket - - correct ans- - D. Create a group consisting of all Canada-based employees, and give the group access to the bucket Your organization is moving an application to Google Cloud. As part of that effort, it needs to migrate the application's working database from another cloud provider to Cloud SQL. The database runs on the MySQL engine. The migration must cause minimal disruption to users. Data must be secured while in transit. Which should your organization use? A. BigQuery Data Transfer Service B. MySQL batch insert C. Database Migration Service D. Cloud Composer - - correct ans- - C. Database Migration Service
B. Migrate the workloads to Compute Engine C. Migrate the workloads to Bare Metal Solution D. Migrate the workloads to Google Kubernetes Engine - - correct ans- - B. Migrate the workloads to Compute Engine Your organization is releasing its first publicly available application in Google Cloud. The application is critical to your business and customers and requires a 2- hour SLA. How should your organization set up support to minimize costs? A. Enroll in Premium Support B. Enroll in Enhanced Support C. Enroll in Standard Support D. Enroll in Basic Support - - correct ans- - B. Enroll in Enhanced Support Your organization offers public mobile apps and websites. You want to migrate to a Google Cloud-based solution for checking and maintaining your users' usernames and passwords and controlling their access to different resources based on their identity. Which should your organization choose? A. VPN tunnels B. Identity Platform C. Compute Engine firewall rules D. Private Google Access - - correct ans- - B. Identity Platform Which Google Cloud service or feature lets you build machine learning models using Standard SQL and data in a data warehouse? A. BigQuery ML B. TensorFlow C. AutoML Tables
D. Cloud Bigtable ML - - correct ans- - A. BigQuery ML Your organization runs an application on virtual machines in Google Cloud. This application processes incoming images. This activity takes hours to create a result for each image. The workload for this application normally stays at a certain baseline level, but at regular intervals it spikes to a much greater workload. Your organization needs to control the cost to run this application. What should your organization do? A. Purchase committed use discounts for the baseline load B. Purchase committed use discounts for the expected spike load C. Leverage sustained use discounts for your virtual machines D. Run the workload on preemptible VM instances - - correct ans- - A. Purchase committed use discounts for the baseline load Your organization is developing a plan for migrating to Google Cloud. What is a best practice when initially configuring your Google Cloud environment? A. Create a project via Google Cloud Console per department in your company B. Define your resource hierarchy with an organization node on top C. Create projects based on team members' requests D. Make every member of your company the project owner - - correct ans- - B. Define your resource hierarchy with an organization node on top Your organization runs many workloads in different Google Cloud projects, each linked to the same billing account. Each project's workload costs can vary from month to month, but the overall combined cost of all projects is relatively stable. Your organization needs to optimize its cost. What should your organization do? A. Purchase a commitment per project for each project's usual minimum B. Create a billing account per project, and link each project to a different billing account
A. Choose the Standard network service tier. B. Choose the Premium network service tier. C. Deploy Cloud VPN. D. Deploy Cloud NAT. - - correct ans- - A. Choose the Standard network service tier. Your organization wants to migrate your on-premises environment to Google Cloud. The on-premises environment consists of containers and virtual machine instances. Which Google Cloud products can help to migrate the container images and the virtual machine disks? A. Compute Engine and Filestore B. Artifact Registry and Cloud Storage C. Dataflow and BigQuery D. Pub/Sub and Cloud Storage - - correct ans- - B. Artifact Registry and Cloud Storage Your company security team manages access control to production systems using an LDAP directory group.How is this access control managed in the Google Cloud production project? A. Assign the proper role to the Service Account in the project's IAM Policy B. Grant each user the roles/iam.serviceAccountUser role on a service account that exists in the Google Group. C. Assign the proper role to the Google Group in the project's IAM Policy. D. Create the project in a folder with the same name as the LDAP directory group. - - correct ans- - C. Assign the proper role to the Google Group in the project's IAM Policy. Your organization wants to be sure that is expenditures on cloud services are in line with the budget. Which two Google Cloud cost management features help your organization gain greater visibility into its cloud resource costs? (Choose two.)
A. Billing dashboards B. Resource labels C. Sustained use discounts D. Financial governance policies E. Payments profile - - correct ans- - A. Billing dashboards B. Resource labels Your organization needs to process large amounts of data from an online application that operates continuously. You do not want to be required to provision infrastructure or create server clusters. What should your organization choose? A. Compute Engine with BigQuery B. Dataproc C. Google Kubernetes Engine with Cloud Bigtable D. Dataflow - - correct ans- - D. Dataflow Your organization needs to ensure that the Google Cloud resources of each of your departments are segregated from one another. Each department has several environments of its own: development, testing, and production. Which strategy should your organization choose? A. Create a project per department, and create a folder per environment in each project. B. Create a folder per department, and create a project per environment in each folder. C. Create a Cloud Identity domain per department, and create a project per environment in each domain. D. Create a Cloud Identity domain per environment, and create a project per department in each domain. - - correct ans- - B. Create a folder per department, and create a project per environment in each folder. Your organization is defining the resource hierarchy for its new application in Google Cloud. You need separate development and production environments. The production