Sharpen your understanding of frequently asked Google Cloud Platform interview questions with this focused quiz. Assess your knowledge of core GCP concepts, services, and architecture, ensuring better preparation for technical interviews and cloud certifications.
Which GCP service allows users to run and manage containers without having to manage the underlying virtual machines, for example, when deploying a microservices application?
Explanation: Cloud Run is designed to run stateless containers without requiring users to manage the underlying infrastructure. App Engine is a platform-as-a-service that abstracts even more but is not specifically for containerized workloads. Compute Engine deals with virtual machines, which require more management. Cloud Store is not a compute service; it does not manage containers or code execution.
In the context of GCP, what is the primary function of an Identity and Access Management (IAM) policy when securing sensitive project data?
Explanation: IAM policies are used to grant or restrict permissions for users, groups, or service accounts to access specific resources in a project. They do not encrypt data or handle backups. Monitoring network traffic is related to security tools, not IAM policies. Using IAM correctly is fundamental for securing access.
Which GCP storage product is best suited for storing large amounts of unstructured data, such as images or video files for a mobile app?
Explanation: Cloud Storage is ideal for storing and retrieving unstructured data such as multimedia files. Cloud SQL is a relational database service, which is not meant for such file storage. Cloud Functions is a compute service and does not provide storage for user data. 'Cloud Table' is not an actual GCP service; it may refer to NoSQL solutions, but is incorrect here.
For isolating network resources and controlling traffic between different environments (such as dev and prod) within a single GCP project, what should you use?
Explanation: A Virtual Private Cloud (VPC) allows you to create isolated network environments within a project, supporting segmentation of resources and traffic control. Projects separate billing and resource visibility, not network isolation. Cloud Nodes is not a real service and Service Endpoints relate to network connections but don't provide segmentation.
Which mechanism in GCP enables users to separate resources by department or team and simplify billing by grouping costs?
Explanation: Folders in GCP provide hierarchical organization to group projects by teams or departments, aiding in cost management and resource segregation. Budgets are used for financial limits. Resource Labels add metadata but don't organize hierarchy. Billing Accounts collect payments but do not organize or group resources by teams.