Google Cloud Adoption Framework

Introduction to Digital Transformation on Google Cloud

Innovating with Data and Google Cloud

Infrastructure and Application Modernization with Google Cloud

Cloud Security and
Operations
STORAGE

DATABASE
Identity Management & Resource Management

Decoupling Applications with Pub/Sub

Cost Management

General
d Adoption Framework
Three Phases: Tactical, Strategic, Transformational
Four Themes - Epics
Learn - Upskilling, External Experience
Lead - Sponsorship, Teamwork
Scale - Architecture, Continuous Integration and Delivery(CI/CD), Infrastructure as Code
Secure - Access Management, Data Management, Identity Management

n to Digital Transformation on Google Cloud

Six Core tenets: Talent, Environment, Structure, Strategy, Empowerment, Innovation

Focus on the user, Think 10x, Launch & Iterate

Focus areas for customer expectation: Access, Engagement, Customization, Communication

with Data and Google Cloud

Looker: Google Cloud business intelligence solution. It’s a data platform that sits on top of any analytics database and mak
it simple to describe your data and define business metrics.
Regions --> Zones --> Clusters

re and Application Modernization with Google Cloud

Hypervisor: Sits on top of physical hardware, and multiple VMs are built on top of it. It’s like having multiple computers th
only use one piece of hardware.

Containers: Only hold exactly what’s needed for the particular application that they support. They start faster, use less
memory, and allow developers to create predictable environments.

Bare Metal: Enables you to migrate specialized workloads to the cloud, while maintaining your existing investments and
architecture.

App Engine: Platform for building scalable web applications and mobile backends. App Engine will
scale your application automatically in response to the amount of traffic it receives, so you only pay for the
resources you use.

Google Kubernetes Engine(GKE): Provides a managed environment for deploying, managing, and scaling your containerize
applications using Google infrastructure. The GKE environment consists of
multiple machines grouped together to form a cluster. Open-source container-orchestration system
for automating computer application deployment, scaling, and management.

Cloud Run: Allows you to build applications in your favorite programming language, with your favorite dependencies and
tools, and deploy them in seconds. It abstracts away all infrastructure management
by automatically scaling up and down from zero almost instantaneously—depending on traffic. Does not need cluster.

Cloud Functions: Serverless execution environment for building and connecting cloud services. It
offers scalable, pay-as-you-go functions as a service to run your code with zero server management. Build event driven
applications using simple, single-purpose functions.
Anthos: Centrally manage multi-cloud and on-premise Kubernetes clusters.

Apigee: Fully featured API management platform that enables application developers and API providers to create connect
digital experiences for end users. Apigee bridges the gap between legacy systems. The Apigee platform includes API servic
that provide the runtime API gateway functionality, Developer Services that allow developers to utilize their APIs, and
Analytics Services that enable enterprises to report on APIs.

Greenfield: Inventing in greenfield allows you to build innovative applications that will help drive the business forward, bu
does require agility, access to a diverse development skill set, and strong support from leadership.

Brownfield: Brownfield strategy is to invent a new application in the cloud environment that will replace an
existing legacy application that remains on-premises. The legacy application is only retired after the new application is buil

Google Cloud VMware Engine: Fully managed service that lets you run the VMware platform in Google Cloud. Google
manages the infrastructure, networking and management services. Expand and Migrate (Lift and
Shift) VMware infrastructure to Google Cloud

Migrate for Compute Engine: Migrate VMs and VM storage to GCE. Test clone capability.

Migrate for Anthos and GKE: modernize apps by moving from VMs to containers. If you have VMs outside GCP, this can be
done using two steps:
- Migrate VMs to GCE with Migrate for Compute Engine
- Migrate GCE VMs to containers with Migrate for Anthos and GKE

Goals of Cost management tools: Visibility, Accountability, Control, Intelligence

Who can do what on which resource
Three kinds of roles in Cloud IAM: Primitive, Predefined, Custom

Operations-focused tools: Cloud Monitoring, Cloud Logging, Error Reporting, Service Reporting
Application performance management tools: Cloud Debugger, Cloud Trace, Cloud Profiler

Google Cloud Logging: Fully managed service that performs at scale and can ingest application and system log data, as we
as custom log data from Google Kubernetes Engine, or GKE, environments, Virtual Machines,
and Google Cloud services.
Cloud Debugger: Helps monitor application performance. IT teams can inspect the state of a running
application in real time, without stopping or slowing it down.
Cloud Trace: Cloud solution for monitoring application performance. It is a distributed tracing system that
helps developers debug or fix and optimize their code.

Security Command Center: Get a consolidated picture of security in Google Cloud. Provides an intelligent risk
dashboard and analytics system
Cloud Data Loss Prevention: Discover, classify, & mask sensitive data (like Credit Card numbers, SSNs, clear text
passwords & Google Cloud credentials). Integrates with Cloud Storage, BigQuery, and Datastore. Provides APIs that can be
invoked from your applications.

Cloud Armor: Protect your production apps (at run time) from denial of service and common web attacks
(OWASP Top 10) like XSS (cross-site scripting) and SQL injection

Block Storage: Hard Disks, Used as DAS, SAN, one block storage connected to one virtual server
Persistent Disk: Network Block Storage
Local SSD: Local block storage. Local SSD is appropriate to be used for Media rendering. Local SSD is the most optimal
choice for being used as a cache as it provides high IOPS and very low latency.

File Storage: Sharing files, shared by several virtual servers

Filestore: High performance file storage

Cloud Storage: Object Storage, Store all file stypes, flexible, inexpensive, provides REST API, obkects are stored in buckets,
max object size is 5TB
Storage Classes:
Standard - No min storage duration
Nearline - 30 days min storage duration
Coldline - 90 days min storage duration
Archive - 365 days min storage duration

Storage Tranfers:

Online Transfer: Use gsutil or API, one time transfer, less than 1TB, transfer from on-prem or another GCS bucket
Storage Transfer Service: More than 1TB from anywhere, transferring from another cloud

Transfer Appliance: Physical transfer using an appliance, greater than 20TB, used where online transfer takes > 1 week

Relational OLTP databases - Row Storage

Cloud SQL: MySQL, PostgreSQL, SQL server DBs for regional relational databases (upto a few TBs)
Cloud Spanner: Unlimited scale and 99.999% availability for global applications with horizontal scaling

Relational OLAP databases - Columnar Storage

BigQuery: Columnar storage with predefined schema. Datawarehousing & BigData workloads

NoSQL Databases

Cloud Firestore: Serverless transactional document DB supporting mobile & web apps. Small to medium DBs (0 - few T
Cloud BigTable: Large databases(10 TB - PBs). Streaming (IOT), analytical & operational workloads. NOT serverless. Doe
NOT support multi row transactions - supports ONLY Single-row transactions.
 In memory databases/caches
Cloud Memorystore: Applications needing microsecond responses, Caching, session management, gaming leaderboard
geospatial applications

nagement & Resource Management

Authorization specifies access rights/privileges to resources.

Separate projects for different environments

Separate folders for each department
One project per application per environment

Billing Account can be associated with one or more projects. You can have multiple billing accounts in an Organization.
Cloud VPN: Connect on-premise network to the GCP network. Implemented using IPSec VPN Tunnel. Traffic through intern
(public). Use for low bandwidth need.
Cloud Interconnect: High speed physical connection between on-premise and VPC networks. Highly available and high
throughput. Reduces egress costs.
Dedicated Interconnect: 10 Gbps or 100 Gpbs configurations
Partner Interconnect: 50 Mbps to 10 Gbps configurations
Direct Peering: Connect customer network to google network using network peering, not recommended.

Site Reliability Engineering (SRE): DevOps++ at Google, Manage by Service Level Objectives (SLOs)
Service Level Indicator(SLI): Quantitative measure of an aspect of a service
Service Level Objective (SLO): - SLI + target
Service Level Agreement (SLA): SLO + consequences (contract)
Error budgets: (100% – SLO)

Applications with Pub/Sub

Pub/Sub: Reliable, scalable, fully-managed asynchronous messaging service. Backbone for Highly Available and Highly
Scalable Solutions. Event ingestion and delivery for streaming analytics pipelines. Used in:
- Microservices Architectures
- IOT Architectures
- Streaming Architectures

Pub/Sub > Dataflow > BigQuery (Streaming)

Pub/Sub > Dataflow > Cloud Storage (Streaming - files)
Cloud Storage > Dataflow > Bigtable/CloudSpanner/Datastore/BigQuery (Batch - Load data into
databases)
Bulk compress files in Cloud Storage (Batch)
Convert file formats between Avro, Parquet & csv (Batch)

Cloud Dataproc: Managed Spark and Hadoop service

Data Studio: Visualize data in BigQuery

Dataprep: Clean and prepare data

Container Registry: Uses GCS bucket to store images. Supports Container images only.

Artifact Registry: Evolution of Container Registry. Manage BOTH container images and non-container artifacts.
Cost Billing Reports: 10,000 feet overview of usage costs
Cost Table report: Detailed view
BigQuery Export: Sends billing data to a BigQuery data set

Managed Instance Group - Identical VMs created using an instance template

Sustained use discounts: Automatic discounts for running VM instances for significant portion of the billing month

Committed use discounts: 1 year or 3 year reservations for workloads with predictable resource needs

Preemptible VM: Short-lived cheaper (upto 80%) compute instances for nontime-critical fault-tolerant workloads

Hardened Images - Reduce boot time and improve security by creating custom

Sole-tenant Nodes: Virtualized instances on hardware dedicated to one customer

Bootstrapping: Install OS patches or software when an VM instance is launched.

Docker: Cloud neutral, provides isolation for containers, light-weight,

Speech-to-Text API: convert speech into text

Text-to-Speech API: convert text into speech

Translation API: Translate texts into more than one hundred languages

Natural Language API: Derive insights from unstructured text

Cloud Vision API: Recommended for generic usecases

Example: Identify if there is a cloud in the picture
Classify images into predefined categories
Detect objects and faces
Read printed words

AutoML Vision: Build custom models based on Images

AutoML Video Intelligence: Add labels to Video

AutoML Tables: Automatically build models on structured data

Vertex AI: Build & deploy ML models faster, Custom tooling within a unified AI platform, Makes MLOps easy

Firebase: Google's mobile platform, Build Apps for iOS, Android, the web, C++, and Unity
For momentary problems, the appropriate problem type is Transient.

Basic support from Google Cloud provides phone support for billing issues only along with case and chat support. Basic
support is included with Google Cloud subscription, and there are no additional charges. Hence, this is the correct choice.
Support types:
Basic
Standard
Enhanced
Premium

To protect the VMs from being deleted, the “delete protection” feature needs to be enabled.

Cloud Asset Inventory is a metadata inventory service that facilitates customers to have a view of all the GCP and Anthos
assets across projects and services, along with enabling them to monitor and analyze all the GCP and Anthos assets across
projects and services.

Dead Letter Topics allows offline examination and debugging of messages to ensure no-delay processing of other message

Instance – One row of a dataset containing one or more input columns and possibly a prediction result

Premium Support will have a 15-minute response time with 24/7 response for high & critical-impact issues.

BigQuery Flex Slots is best suited for cyclical workloads that require extra capacity, or for workloads that need to process a
lot of data in a short time, and so would be less expensive to run using reserved slots for a short time.

Bring your own IP (BYOIP) lets you provision and use your own public IPv4 addresses for Google Cloud resources.

Disk type not backed by Solid State Drives (SSD) - Standard persistent disk(Backed by HDD)

Store API keys and certificates used across your Google cloud- Secret Manager

How many parents can one resource have - 1

Which of the resources listed below is an ideal choice for a Persistent Disk snapshot?
- Standard disk backup
- Differential backup

There are three basic ways to interact and connect with the services and resources hosted in Google Cloud Platform.
- Google Cloud Console
- Command Line Interface (includes Cloud SDK and Cloud Shell)
- Client Libraries

One stop reference page for GCP support - Support Hub

Compliance Resource Webpages - Compliance Reports Manager, GDPR Homepage, Compliance Offerings

Cloud Data Loss Prevention (DLP) provides three key features:

- Classification
- De-identification
- Inspection

Google Cloud Storage offering that also serves as Content Delivery Network (CDN) - Cloud Storage

By default you can create up to 5 networks per project.

# Ans Right/Wrong %Correct
1C R 83.97%
2C R
3A R
4A R
5C R
6B R
7 A,C W
8A R
9A R
10 A R
11 A W
12 B R
13 B R
14 B R
15 D R
16 B R
17 B W
18 A R
19 B R
20 D R
21 A W
22 C R
23 D R
24 A W
25 B R
26 C W
27 D R
28 C R
29 A W
30 C R
31 A R
32 D R
33 A R
34 B R
35 D R
36 D R
37 A R
38 A R
39 D R
40 C R
41 D R
42 D R
43 A W
44 B R
45 B R
46 A R
47 A R
48 B R
49 B W
50 A R
51 C R
52 C W
53 B R
54 A W
55 A,E W
56 D R
57 B R
58 C R
59 C R
60 C R
61 A R
62 D R
63 D R
64 C R
65 B R
66 C R
67 A R
68 C R
69 B W
70 A R
71 B R
72 B R
73 B R
74 D R
75 B R
76 B R
77 A R
78 D R
79 D W
80 B R
81 A R
82 C R
83 A R
84 D R
85 A R
86 B R
87 D R
88 C R
89 D W
 90 C R
91 D R
92 C R
93 A R
94 B R
95 D R
96 A R
97 A R
98 A W
99 D W
100 A R
101 B R
102 C R
103 D R
104 B R
105 B R
106 D R
107 A R
108 B W
109 D R
110 A R
111 C R
112 D R
113 C W
114 D R
115 A W
116 A R
117 B R
118 D R
119 B R
120 A R
121 B R
122 A R
123 C R
124 B R
125 D R
126 A R
127 A R
128 B R
129 A R
130 C R
131 C R
132 D R
133 C W
134 B R
135 A W
136 D R
137 C R
138 D W
139 C R
140 B R
141 C R
142 B R
143 C R
144 B R
145 C R
146 C W
147 C R
148 D R
149 C R
150 B W
151 B R
152 C R
153 D R
154 C R
155 C R
156 B R