







































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The E20-920 exam certifies professionals in designing and architecting cloud services solutions. Candidates will demonstrate expertise in cloud architecture, deployment models, security, and multi-cloud strategies. This certification is ideal for cloud architects seeking to design scalable, secure, and efficient cloud solutions for enterprises.
Typology: Exams
1 / 79
This page cannot be seen from the preview
Don't miss anything!








































































Question 1. Which cloud deployment model is characterized by exclusive access to the cloud infrastructure by a single organization? A) Public Cloud B) Private Cloud C) Hybrid Cloud D) Multi-cloud Answer: B Explanation: A private cloud is dedicated exclusively to one organization, offering greater control and security compared to public clouds. Question 2. Which of the following service models provides a platform allowing customers to develop, run, and manage applications without dealing with underlying infrastructure? A) IaaS B) PaaS C) SaaS D) DaaS Answer: B Explanation: Platform as a Service (PaaS) offers a cloud platform and environment for developers to build applications without managing the underlying infrastructure. Question 3. What is a primary benefit of cloud computing related to resource scalability? A) Fixed resource allocation B) Limited availability C) Scalability on demand D) Increased hardware dependency Answer: C Explanation: Cloud computing allows resources to be scaled up or down dynamically based on workload demands, providing flexibility and efficiency. Question 4. Which design principle ensures that cloud services remain operational despite failures in some components?
A) Scalability B) Fault Tolerance C) Cost Optimization D) Automation Answer: B Explanation: Fault tolerance ensures that cloud systems continue functioning correctly even when some components fail, enhancing reliability. Question 5. What is a key challenge of cloud computing related to data privacy and security? A) Data localization restrictions B) Unlimited data access C) Reduced security controls D) Increased hardware costs Answer: A Explanation: Data localization and compliance regulations can restrict where data can be stored and processed, posing security and privacy challenges. Question 6. In cloud architecture, which principle involves automating repetitive tasks to improve efficiency? A) Manual provisioning B) Automation C) Manual scaling D) Static configuration Answer: B Explanation: Automation involves using scripts and tools to perform repetitive tasks automatically, reducing errors and increasing speed. Question 7. Which cloud service model is primarily used to provide software applications over the internet? A) IaaS
Answer: B Explanation: Identity and Access Management (IAM) provides policies and roles to control user and service permissions in the cloud. Question 11. When designing for performance, which strategy involves estimating the required capacity to handle workload peaks? A) Capacity Planning B) Cost Estimation C) Fault Tolerance D) Automation Answer: A Explanation: Capacity planning involves forecasting resource needs to ensure the system can handle peak loads efficiently. Question 12. Which tool is commonly used to monitor AWS cloud resources? A) Azure Monitor B) CloudWatch C) Google Stackdriver D) Nagios Answer: B Explanation: Amazon CloudWatch provides monitoring and management for AWS resources and applications. Question 13. Which migration strategy involves moving applications to the cloud without redesigning them? A) Replatforming B) Rehosting C) Refactoring
D) Rebuilding Answer: B Explanation: Rehosting, or lift-and-shift, moves applications as-is to the cloud, minimizing changes during migration. Question 14. Which cloud provider is known for its extensive global network and services such as EC2 and S3? A) Microsoft Azure B) Google Cloud C) AWS D) IBM Cloud Answer: C Explanation: Amazon Web Services (AWS) is recognized for its broad service offerings and extensive global infrastructure. Question 15. Which of the following is a key consideration when integrating cloud services with legacy systems? A) Complete replacement of legacy systems B) Compatibility and API integration strategies C) Ignoring security protocols D) Minimizing network security measures Answer: B Explanation: Ensuring compatibility and using APIs facilitate smooth integration of legacy systems with cloud environments. Question 16. Which model describes the shared responsibility between cloud provider and customer for security? A) Managed Security Model B) Shared Responsibility Model C) Independent Security Model D) Contractual Security Model
Explanation: ISO 27001 specifies requirements for establishing, maintaining, and continually improving an information security management system. Question 20. Which monitoring tool is specific to Azure for application insights and performance tracking? A) CloudWatch B) Azure Monitor C) Stackdriver D) Nagios Answer: B Explanation: Azure Monitor provides comprehensive monitoring and diagnostics for Azure resources and applications. Question 21. What is the primary purpose of resource tagging in cloud management? A) To increase security risks B) To organize and manage resources effectively for cost and performance tracking C) To prevent resource scaling D) To disable resource monitoring Answer: B Explanation: Resource tags help organize, categorize, and manage cloud resources for better cost control and operational oversight. Question 22. Which cloud migration approach involves redesigning applications to leverage cloud-native features? A) Rehost B) Replatform C) Refactor D) Rebuild Answer: C Explanation: Refactoring involves modifying applications to optimize them for cloud environments, often utilizing cloud-native features.
Question 23. Which tool is primarily used for migrating workloads to Azure? A) AWS Migration Hub B) Azure Migrate C) Google Transfer Service D) CloudEndure Answer: B Explanation: Azure Migrate helps assess, plan, and execute migration of workloads to Azure cloud. Question 24. What does a high RTO (Recovery Time Objective) indicate in disaster recovery planning? A) Longer acceptable downtime B) Shorter acceptable downtime C) No downtime allowed D) No data loss tolerated Answer: A Explanation: A high RTO indicates a longer acceptable recovery time after a disaster, allowing more flexibility. Question 25. Which architecture principle ensures that cloud services are available even if some components fail? A) Scalability B) High Availability C) Cost Efficiency D) Automation Answer: B Explanation: High availability ensures that services remain accessible despite failures, often through redundancy and failover strategies.
A) Continuous Integration/Continuous Deployment (CI/CD) B) Manual Deployment C) Batch Processing D) Static Deployment Answer: A Explanation: CI/CD automates code testing and deployment, ensuring faster and reliable updates of cloud applications. Question 30. Which cloud governance framework involves defining policies and roles to control cloud resource access and usage? A) ITIL B) COBIT C) RBAC (Role-Based Access Control) D) DevOps Answer: C Explanation: RBAC defines roles and permissions to manage access control effectively within cloud environments. Question 31. Which cloud provider is recognized for its extensive AI and machine learning services such as SageMaker? A) Google Cloud B) AWS C) Microsoft Azure D) IBM Cloud Answer: B Explanation: AWS offers SageMaker, a comprehensive platform for building, training, and deploying machine learning models. Question 32. Which key feature of cloud security involves controlling access to resources based on identities and roles? A) Encryption
C) Firewall rules D) Load balancing Answer: B Explanation: IAM manages user identities, roles, and permissions to enforce access controls in cloud environments. Question 33. Which type of cloud storage is best suited for supporting multiple users accessing shared data via a network? A) Block Storage B) Object Storage C) File Storage D) Local Storage Answer: C Explanation: File storage provides shared access via network file systems, suitable for collaborative environments. Question 34. Which strategy is used to minimize cloud costs by reserving capacity for a longer term? A) Spot Instances B) On-Demand Instances C) Reserved Instances D) Auto Scaling Answer: C Explanation: Reserved instances involve committing to a longer-term usage plan at a discounted rate, reducing costs. Question 35. In cloud architecture, what does the term "lift-and-shift" refer to? A) Rebuilding applications from scratch B) Moving applications without redesign to the cloud
D) Local Storage Answer: B Explanation: Object storage is designed for scalability and handling large unstructured data, such as media files. Question 39. Which cloud compliance standard is specifically designed for payment card industry security? A) GDPR B) HIPAA C) PCI DSS D) SOC 2 Answer: C Explanation: PCI DSS establishes security standards for organizations handling credit card information. Question 40. Which cloud service model provides a fully managed software application accessible via web browsers? A) IaaS B) PaaS C) SaaS D) DaaS Answer: C Explanation: SaaS delivers fully managed applications over the internet, accessible through browsers. Question 41. Which technique involves encrypting data before storing it in the cloud to enhance security? A) Data Masking B) End-to-End Encryption C) Tokenization D) Data Obfuscation
Answer: B Explanation: End-to-end encryption ensures data is encrypted at source and decrypted only by authorized parties, protecting data confidentiality. Question 42. Which process involves assessing an organization's readiness to migrate to the cloud? A) Cloud Readiness Assessment B) Cost Analysis C) Security Audit D) Performance Benchmarking Answer: A Explanation: Cloud readiness assessment evaluates technical, operational, and security preparedness for migration. Question 43. Which cloud monitoring service provides detailed insights into application performance and usage on Azure? A) CloudWatch B) Azure Monitor C) Stackdriver D) Nagios Answer: B Explanation: Azure Monitor offers comprehensive monitoring and diagnostics for Azure resources and applications. Question 44. Which cloud migration approach involves transforming applications to better utilize cloud-native features, often requiring code changes? A) Rehost B) Replatform C) Refactor D) Rebuild Answer: C
Question 48. Which of the following is a critical component of a disaster recovery plan? A) Cost reduction strategy B) RTO and RPO definitions C) Hardware upgrade schedule D) Application refactoring plan Answer: B Explanation: RTO (Recovery Time Objective) and RPO (Recovery Point Objective) define acceptable downtime and data loss, core to DR planning. Question 49. Which emerging trend involves deploying computational resources at or near the data source to reduce latency? A) Cloud Computing B) Edge Computing C) Quantum Computing D) Mainframe Computing Answer: B Explanation: Edge computing processes data close to where it is generated, reducing latency and bandwidth usage. Question 50. Which service provides a managed Kubernetes environment in Azure? A) Azure Virtual Machines B) Azure App Service C) Azure Kubernetes Service (AKS) D) Azure Functions Answer: C Explanation: AKS offers a managed Kubernetes container orchestration platform in Azure. Question 51. Which type of cloud storage is best suited for applications requiring shared access to files over a network?
A) Block Storage B) Object Storage C) File Storage D) Local Storage Answer: C Explanation: File storage provides shared network access, suitable for collaborative environments. Question 52. Which process involves continuously integrating code changes, testing, and deploying to production? A) Batch Processing B) Continuous Integration/Continuous Deployment (CI/CD) C) Manual Deployment D) Static Code Analysis Answer: B Explanation: CI/CD automates the process of integrating, testing, and deploying code, enabling rapid delivery. Question 53. Which standard provides a comprehensive framework for managing information security risks? A) ISO 27001 B) NIST Cybersecurity Framework C) PCI DSS D) SOC 2 Answer: B Explanation: NIST Cybersecurity Framework offers guidelines for managing cybersecurity risks effectively. Question 54. Which cloud provider offers the service called Google Cloud Storage for scalable object storage? A) AWS
Answer: B Explanation: HIPAA regulates the protection of health information in the US healthcare sector. Question 58. Which tool helps organizations plan cloud migration, assess workloads, and optimize deployment? A) CloudCheckr B) Azure Migrate C) CloudHealth D) CloudGuard Answer: B Explanation: Azure Migrate assists in planning and executing Azure cloud migrations, including assessment and sizing. Question 59. Which cloud architecture principle emphasizes designing systems that can handle growth seamlessly? A) Cost Optimization B) Scalability C) Fault Tolerance D) Security Answer: B Explanation: Scalability ensures systems can grow to meet increasing demand without performance degradation. Question 60. Which type of storage is optimized for high throughput and low latency, suitable for databases? A) Block Storage B) Object Storage C) File Storage
D) Tape Storage Answer: A Explanation: Block storage offers high performance and low latency, ideal for database workloads. Question 61. Which cloud service enables running code in response to events without managing servers? A) AWS EC B) AWS Lambda C) Azure Virtual Machines D) Google Compute Engine Answer: B Explanation: AWS Lambda runs code triggered by events, automatically managing the underlying infrastructure. Question 62. Which cloud provider offers the service called Google Cloud BigQuery for large- scale analytics? A) AWS B) Azure C) Google Cloud D) IBM Cloud Answer: C Explanation: Google BigQuery is a serverless data warehouse designed for big data analytics in Google Cloud. Question 63. Which component is used to isolate network segments within a cloud environment? A) Firewall B) Subnet C) Load Balancer D) VPN Gateway