




























































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The DevOps Exam validates knowledge of DevOps culture, practices, and toolchains that enable continuous integration and continuous delivery (CI/CD). Topics include version control, build automation, configuration management, containerization, orchestration, infrastructure as code, and monitoring. Candidates must show an understanding of collaboration between development and operations teams to improve deployment speed and system stability.
Typology: Exams
1 / 100
This page cannot be seen from the preview
Don't miss anything!





























































































Question 1. Which of the following best describes the primary goal of the First Way in DevOps? A) Automating security testing B) Accelerating the flow of work from development to operations C) Implementing continuous feedback loops D) Encouraging a culture of learning Answer: B Explanation: The First Way emphasizes the smooth and fast flow of work (code, changes, features) from development through to operations, reducing hand‑offs and delays. Question 2. In the context of DevOps, which metric directly measures the time it takes for a committed change to reach production? A) Mean Time to Recovery (MTTR) B) Deployment Frequency C) Lead Time for Changes D) Change Failure Rate Answer: C Explanation: Lead Time for Changes quantifies the elapsed time from code commit to the moment it is running in production, reflecting delivery speed. Question 3. Which Agile principle most closely aligns with the DevOps practice of “breaking down silos”? A) Customer collaboration over contract negotiation B) Responding to change over following a plan C) Individuals and interactions over processes and tools
D) Working software over comprehensive documentation Answer: C Explanation: Emphasizing individuals and interactions encourages cross‑functional collaboration, which is the essence of breaking down silos in DevOps. Question 4. Which of the following statements about immutable infrastructure is FALSE? A) Servers are never updated after deployment; a new instance is created instead. B) Configuration drift is eliminated because the image does not change. C) Patching can be performed directly on a running instance. D) Rollbacks are achieved by redeploying a previous immutable image. Answer: C Explanation: Immutable infrastructure forbids in‑place changes such as patching; updates require a new image and redeployment. Question 5. In Terraform, what is the purpose of a “state file”? A) To store provider credentials securely B) To keep a record of resources managed by Terraform C) To define the desired configuration in HCL D) To execute remote commands on target machines Answer: B Explanation: The state file tracks the real‑world resources that Terraform has created, enabling it to map configuration to actual infrastructure.
Answer: A Explanation: GitOps relies on declarative Git commits; when a manifest changes in Git, an operator reconciles the cluster to match the repository. Question 9. Which branching strategy is most aligned with trunk‑based development? A) Long‑lived feature branches lasting weeks B) A single main branch with short‑lived feature branches merged frequently C) Release branches created for each production version D) Gitflow with develop and master branches Answer: B Explanation: Trunk‑based development uses a main branch (trunk) and encourages rapid merges of small, short‑lived branches. Question 10. In Jenkins, what is the purpose of a “pipeline” defined in a Jenkinsfile? A) To store credentials for external services B) To describe the stages and steps of a CI/CD workflow as code C) To manage plugin installations automatically D) To create Docker images for the Jenkins master Answer: B Explanation: A Jenkinsfile contains a declarative or scripted pipeline that codifies the build, test, and deployment stages. Question 11. Which artifact repository is primarily used for storing Docker images? A) Nexus Repository Manager B) JFrog Artifactory
C) Sonatype Nexus D) All of the above Answer: D Explanation: Both Nexus and Artifactory support Docker registries, so any can be used to store Docker images. Question 12. In a Dockerfile, which instruction sets the base image for subsequent layers? A) FROM B) RUN C) COPY D) ENTRYPOINT Answer: A Explanation: FROM specifies the parent image upon which all later instructions are built. Question 13. What is the default network mode for a Docker container when no network option is specified? A) host B) bridge C) none D) overlay Answer: B Explanation: Docker creates a private bridge network (docker0) for containers by default, enabling NATed connectivity.
Answer: B Explanation: Namespaces partition cluster resources, enabling multi‑tenant isolation and resource quota enforcement. Question 17. Which deployment strategy minimizes risk by routing a small percentage of traffic to a new version before full rollout? A) Blue‑Green B) Rolling Update C) Canary Release D) Recreate Answer: C Explanation: Canary releases expose a tiny subset of users to the new version, allowing validation before scaling up. Question 18. In a Blue‑Green deployment, what is the main advantage over a simple rolling update? A) Zero downtime and instant rollback by switching DNS or load balancer B) Reduced storage requirements for the new version C) Automatic scaling of the green environment only D) Ability to deploy without any version control Answer: A Explanation: Blue‑Green maintains two complete environments; switching traffic instantly provides zero‑downtime and immediate rollback if needed.
Question 19. Which metric best represents Mean Time to Recovery (MTTR) in a production system? A) Average time between failures B) Average time taken to restore service after an incident C) Time required to develop a new feature D) Duration of a full deployment pipeline Answer: B Explanation: MTTR measures how quickly a system is restored to normal operation after a failure. Question 20. In the context of disaster recovery, what does RPO stand for? A) Recovery Point Objective B) Resilience Performance Optimization C) Redundancy Provisioning Order D) Runtime Process Observation Answer: A Explanation: RPO defines the maximum tolerable period of data loss measured in time. Question 21. Which of the following tools is primarily used for time‑series metric collection in cloud‑native environments? A) Elasticsearch B) Prometheus C) Kibana D) Jaeger
B) A single operation or unit of work within a trace C) The latency threshold for alerts D) The storage location for logs Answer: B Explanation: A span is a timed operation (e.g., an HTTP call) that forms part of a larger trace. Question 25. Which practice best reduces “alert fatigue” in monitoring systems? A) Sending an email for every metric deviation B) Grouping related alerts and using severity levels with intelligent suppression C) Disabling all alerts during business hours D) Increasing the frequency of polling intervals Answer: B Explanation: Aggregating alerts, assigning appropriate severity, and applying suppression rules prevent overwhelming operators. Question 26. What is the primary advantage of integrating SAST into the CI pipeline? A) Detecting runtime vulnerabilities after deployment B) Identifying security flaws early in the code before it runs C) Scanning container images for known CVEs D) Enforcing network segmentation policies Answer: B Explanation: Static Application Security Testing analyzes source code during build, catching issues before they become executable.
Question 27. Which tool is commonly used to manage secrets such as API keys in Kubernetes clusters? A) Helm B) HashiCorp Vault C) Terraform D) Prometheus Answer: B Explanation: Vault provides secure storage, dynamic secret generation, and fine‑grained access control for Kubernetes workloads. Question 28. In compliance as code, which language or framework is often used to define policy as code for cloud resources? A) Dockerfile B) Open Policy Agent (OPA) with Rego C) Bash scripting D) SQL Answer: B Explanation: OPA’s Rego language allows declarative policy definitions that can be evaluated against infrastructure state. Question 29. Which scanning tool is specifically designed to find vulnerabilities in container images before they are deployed? A) SonarQube B) Trivy C) JMeter
B) To toggle functionality at runtime without redeploying code C) To encrypt data in transit D) To monitor CPU usage of a container Answer: B Explanation: Feature flags allow selective activation of new features, facilitating canary testing and rollbacks. Question 33. Which of the following is a key benefit of using a “declarative” IaC approach? A) Explicit step‑by‑step instructions for each resource creation B) The system automatically converges to the desired state defined in code C) Faster execution because commands are run in order D) Ability to write scripts in any programming language Answer: B Explanation: Declarative definitions describe the target state; the IaC engine reconciles the actual state to match it. Question 34. In Git, what does the command git rebase primarily achieve? A) Merges two branches creating a merge commit B) Rewrites commit history to place changes on top of another branch C) Deletes the current branch D) Stashes uncommitted changes Answer: B Explanation: git rebase moves a series of commits to a new base, creating a linear history.
Question 35. Which of the following is NOT a typical responsibility of a Site Reliability Engineer (SRE)? A) Designing and implementing CI/CD pipelines B) Writing user interface mockups for product managers C) Defining Service Level Objectives (SLOs) D) Automating incident response procedures Answer: B Explanation: SREs focus on reliability, automation, and performance, not UI/UX design. Question 36. In a microservices architecture, which pattern helps prevent cascading failures across services? A) Circuit Breaker B) Singleton C) Monolithic Kernel D) Tight Coupling Answer: A Explanation: A circuit breaker detects failing downstream services and stops further calls, isolating failures. Question 37. Which Kubernetes object is used to store configuration data that can be consumed as environment variables or files by pods? A) Secret B) ConfigMap C) PersistentVolumeClaim D) ServiceAccount
B) A plugin that enables interaction with a specific cloud or service API C) A backend that stores the state file D) A variable file containing configuration values Answer: B Explanation: Providers abstract the APIs of clouds, SaaS platforms, or other services, allowing Terraform to manage resources. Question 41. Which of these is a characteristic of a “lean” approach in software delivery? A) Maximizing batch size to reduce overhead B) Eliminating waste and optimizing flow C) Prioritizing documentation over working software D) Delaying testing until after deployment Answer: B Explanation: Lean focuses on removing non‑value‑adding activities (waste) and improving the speed of the value stream. Question 42. What does the term “shift‑left” refer to in DevSecOps? A) Moving security testing earlier in the development lifecycle B) Deploying applications only to left‑handed users C) Placing monitoring tools on the left side of the architecture diagram D) Scheduling builds during the early morning hours Answer: A Explanation: “Shift‑left” means integrating security checks (e.g., SAST) early, during coding and CI, rather than after deployment.
Question 43. Which of the following is a primary benefit of using a “service mesh” such as Istio? A) Automatic code generation for microservices B) Centralized traffic management, security, and observability without changing application code C) Replacing Kubernetes as the container orchestrator D) Providing a GUI for Dockerfile creation Answer: B Explanation: Service meshes inject proxies alongside services, handling routing, mTLS, and telemetry transparently. Question 44. In continuous delivery, what differentiates “continuous deployment” from “continuous delivery”? A) Continuous deployment automatically releases to production; continuous delivery requires manual approval. B) Continuous delivery uses Docker; continuous deployment does not. C) Continuous deployment only works with monolithic apps. D) Continuous delivery does not involve testing. Answer: A Explanation: Continuous deployment pushes every change that passes the pipeline straight to production, while continuous delivery stops short of production, awaiting a manual decision. Question 45. Which command is used to apply a Kubernetes manifest file to a cluster? A) kubectl run B) kubectl apply - f <file.yaml>
Question 48. Which of the following is a typical outcome of implementing “Infrastructure as Code” in an organization? A) Increased manual configuration steps B) Faster, repeatable provisioning of environments with reduced drift C) Higher cost due to lack of automation D) Reduced visibility into infrastructure changes Answer: B Explanation: IaC automates provisioning, ensuring consistency and eliminating manual error, thus reducing configuration drift. Question 49. Which of the following best describes the “GitOps” principle? A) All infrastructure changes must be made via a web console. B) The desired state of the system is stored in Git, and automation reconciles the actual state to match it. C) Git is used only for application source code, not for infrastructure. D) Changes are applied directly on servers without version control. Answer: B Explanation: GitOps treats Git as the single source of truth; operators continuously sync the live environment to the repository state. Question 50. In a CI system, what is the purpose of a “build artifact”? A) To store source code history B) To hold compiled binaries, packages, or containers produced by the build process for later deployment C) To define environment variables for the pipeline
D) To monitor runtime performance Answer: B Explanation: Artifacts are the output of the build step that will be consumed by downstream stages such as testing or deployment. Question 51. Which of the following statements about “immutable servers” is TRUE? A) They are updated in place with patches. B) They are replaced entirely when changes are needed. C) They require manual configuration after each deployment. D) They cannot be version‑controlled. Answer: B Explanation: Immutable servers are never modified after launch; any change triggers creation of a new server image. Question 52. In the context of cloud‑native logging, which component of the ELK stack is responsible for visualizing log data? A) Elasticsearch B) Logstash C) Kibana D) Beats Answer: C Explanation: Kibana provides dashboards and query interfaces to explore logs stored in Elasticsearch.