Compute Services
losing any data.
• Storage and Database Services
• Networking Services
• Security Services
• Data Integration and Analytics
Services
Google Cloud Storage Options
We can store our data on a remote server
with Google Cloud Storage and access it
whenever needed. Google Cloud Platform
provides a number of cloud storage
choices, each with special features and
applications. The types are listed below:
1. Google Cloud Persistent Disk
(Block Storage)
2. Google Cloud Filestore (Network
File Storage)
3. Google Cloud Storage (Object
Storage)
4. Google Cloud Storage for Firebase
5. Google Cloud Storage Transfer
Service
Google Cloud Persistent Disks (Block
Storage)
A type of block storage called Google Cloud
Persistent Disks offers dependable and
quick storage for your virtual machine
instances on the Google Cloud Platform.
• We can back up our storage using
persistent discs, which allow us to
attach discs of various sorts and
sizes, such as SSDs or HDDs, to the
necessary virtual machines. This
block storage will boost throughput
and decrease latency.
• Because of its high durability and
support for snapshots, persistent
discs enable us to take a disc
backup when necessary without
• Once the disk is attached to the
VMs, we can change the size of the
disk, making them more flexible.
This can be done without losing the
data.
• Persistent Disks are more secure.
We can encrypt the data by using a
Google key or customer-managed
keys and also restrict the access of
the disk to specific users, groups, or
resources by using IAM roles.
Google Cloud Filestore (Network File
Storage)
A controlled network file storage service
offered by Google Cloud Platform is Google
Cloud Filestore. It enables reliable
performance and high availability for storing
and sharing files.
• We can create files with the aid of
file storage that can be mounted
onto the necessary path and
accessed from an instance
operating on the GCP or on-
premises.
• File storage is available in two
types:
1. Standard tier: Provides a
throughput of 800 MB/s per
share, resulting in minimal
latency and good
performance.
2. Premium tier: Throughput
of 1.2 GB/s per share,
enables SSD storage, and is
particularly beneficial for
applications that require
high IOPs and low latency.
• Automatic snapshots will be taken
in the file storage, and since our
storage is automatically backed up,
we can prevent data loss.
Google Cloud Storage (Object Storage)
Object storage is scalable, durable, and
secure. Once we store our data in object
storage, it can be accessed from anywhere,
meaning the object storage is region-
independent.
1. Object storage is very different from
Block storage and File storage. In
this, we store the data in the form of
objects, making it more suited for
static data like videos, photos, etc.
2. We can save our data in accordance
with our needs; for example, if we
frequently use it, we will keep it in
Standard storage, while less
frequently accessed data can be
kept in Coldline and Archive for
long-term data access.
3. Object storage offers us data
encryption, data replication, and
lifecycle management, making it
more reliable. We can integrate the
object storage with multiple GCP
services like Google Cloud
Functions, BigQuery, and AI
Platform, enabling you to build
powerful applications.
Google Cloud Storage Classes, Archival
Storage, and Lifecycle Management
Rules
For various use cases, Google Cloud
Storage offers a variety of storage classes,
including Archival Storage, which is made
for data that is rarely accessed but needs to
be kept for a long time.
• Archival Storage: Mainly used for
storing data that is infrequently
accessed and can be retained for
long periods. Archival data can
provide a cost-effective option for
storing data that is not accessed
frequently but must be preserved
for legal, regulatory, or business
reasons.
Benefits of Using Archival Storage
1. Low Cost: The data stored in
Archival storage is not accessed
that frequently, so the cost of the
storage is very low.
2. High Durability: The durability of
Archival storage is the same as
other storage options.
3. Long Retention Period: Data stored
in Archival storage will be available
for more than 8 years.
4. Lifecycle Management: With
lifecycle management rules, data
can be moved automatically to
Archival storage.
• Note: Accessing data from Archival
storage is very slow compared to
other storage options. If the data is
needed frequently, Archival storage
is not a suitable option.
Types of Storage Classes
Google Cloud Platform (GCP) offers
different types of storage in storage classes
that can be used for different purposes
based on their performances. The following
are the storage classes available in GCP:
1. Standard Storage:
o Intended for data that needs
to be accessed frequently.
o Highly available and helps
decrease latency.
2. Nearline Storage:
o Intended for data that must
be highly available but not
accessed as frequently as
standard storage.
o Suitable for data that needs
to be accessed within
seconds or minutes.
3. Coldline Storage:
 o Intended for data that is
accessed infrequently.
o Suitable for data that needs
to be accessed within hours.
• The storage classes mentioned
above have different pricing,
availability, and performance.
Based on our requirements and
cost, we can choose the storage
class that is required. We can also
use lifecycle management rules to
automatically transition data based
on our requirements.
Which Storage Should I Use?
Your use case’s particular requirements will
determine which Google Cloud Platform
(GCP) storage option is best for you. The
following list of typical GCP storage options
and use cases includes:
• Object Storage:
o Suitable for large amounts
of data, such as pictures,
movies, backups, and
archives.
o Accessed via a RESTful API,
making it simple to integrate
with other programs and
services.
• Block Storage:
o Suitable for storing data that
requires low-latency
access, such as databases,
transactional workloads,
and high-performance
computing (HPC)
applications.
Bucket Attributes
o Uses Compute Engine
persistent disks.
• FileStore:
o Ideal for workloads
including media rendering,
analytics, and content
management.
o Although primarily an object
storage service, Cloud
Filestore can also be used to
store files.
Cloud Storage
Cloud Storage is a fully managed, scalable
service with no need to provision capacity
ahead of time. Key features include:
• Each object in Cloud Storage has a
URL.
• Cloud Storage consists of buckets
you create, configure, and use to
hold your storage objects
(immutable – no edit, create new
versions).
• Cloud Storage encrypts your data
on the server side before being
written to disk (by default = HTTPS).
• You can move objects of Cloud
Storage to other GCP storage
services.
• When you create a bucket:
o It is given a globally unique
name.
o Specify a geographic
location where the bucket
and its contents are stored.
o Set a default storage class.
Bucket attributes Bucket contents

Globally unique name Files in a flat namespace

Storage class N/A

Location Region or multi-region

IAM policies or access Access Control Lists(ACLs)

control lists offer finer controls

Object versioning
N/A
setting

Object lifecycle
N/A
management rules

Parameters Multi-regional Regional Nearline Coldline

Intended for data Most frequently Accessed frequently Accessed less than Accessed less than
that is accessed within a region a month once a year

Availability SLA 99,95% 99.90% 99.00% 99.00%

Access APIs Consistent APIs

Access time Millisecond access

Storage price The price per GB per month increases from left to right

Retrieved price The total Price per GB per month transferred decreases from left to right

Content storage In-region analytics Long-tail content Archiving, disaster

Use cases
and delivery transcoding backups recovery
Cloud Storage Pricing
Pricing for Cloud Storage services is based
on usage, including the amount of data
stored, the time period for which it is
stored, the number of operations
performed, and the network resources used
when moving or accessing data.
• Standard Storage: Starting at $0.02
per GB per month
• Nearline Storage: Starting at $0.01
per GB per month
• Coldline Storage: Starting at
$0.004 per GB per month
• Archive Storage: Starting at
$0.0012 per GB per month
Use Cases of Cloud Storage
• Integrated Repository for
Analytics and ML:
o Cloud Storage is strongly
consistent, providing
accuracy in analytics
workloads.
• Media Content Storage and
Delivery:
o Provides the availability and
throughput needed to
stream audio or video
directly to applications and
websites.
• Backups and Archives:
o Backup data in Cloud
Storage can be used for
more than just recovery
because all storage classes
have ms latency and are
accessed through a single
API.
Features of GCP
• Object Lifecycle Management:
Define conditions that trigger data
deletion or transition to a cheaper
storage class.
• Object Versioning: Continue to
store old copies of objects when
they are deleted or overwritten.
• Retention Policies: Define
minimum retention periods that
objects must be stored for before
they’re deleted.
• The Object Holds: Place a hold on
an object to prevent its deletion.
• Customer-Managed Encryption
Keys: Encrypt object data with
encryption keys stored by the Cloud
Key Management Service and
managed by you.
• Customer-Supplied Encryption
Keys: Encrypt object data with
encryption keys created and
managed by you.
• Uniform Bucket-Level Access:
Uniformly control access to your
Cloud Storage resources by
disabling object ACLs.
• Requester Pays: Require access to
your data to include a project ID to
bill for network charges, operation
charges, and retrieval fees.
• Bucket Lock: Configure a data
retention policy for a Cloud Storage
bucket that governs how long
objects in the bucket must be
retained.
• Pub/Sub Notifications for Cloud
Storage: Send notifications to
Pub/Sub when objects are created,
updated, or deleted.
• Cloud Audit Logs with Cloud
Storage: Maintain admin activity
 logs and data access logs for your
Cloud Storage resources.
• Object- and Bucket-Level
Permissions: Cloud Identity and
Access Management (IAM) allows
Traditional Storage
you to control who has access to
your buckets and objects.
Cloud Storage vs. Traditional Storage
Cloud Storage
• Remote Drives: Uses remote drives
to store data at the cloud location
utilized by the client.
• Network Utilization: Utilizes the
network to store data to an off-site
server owned by the service
provider.
• Scalability: Offers virtually
unlimited storage capacity, allowing
users to scale up or down based on
their needs without physical
hardware constraints.
• Cost Efficiency: Operates on a pay-
as-you-go model, eliminating the
need for large upfront investments
in hardware.
• Maintenance: Managed by the
service provider, reducing the
burden of hardware maintenance,
updates, and repairs on the user.
• Accessibility: Provides remote
access to data from anywhere with
an internet connection, facilitating
collaboration and remote work.
• Disaster Recovery: Enhances data
resilience with built-in redundancy
and geographic distribution,
ensuring data availability in case of
localized failures.
• Security: Implements advanced
security measures, including data
encryption, access controls, and
compliance certifications managed
by the provider.
• Features of Cloud Storage: (As
listed above)
• On-Premises Hardware: Relies on
physical storage devices located
within the organization’s premises.
• Initial Investment: Requires
significant upfront capital
expenditure for purchasing
hardware and infrastructure.
• Scalability Limitations: Scaling
storage capacity involves
purchasing and installing additional
hardware, which can be time-
consuming and costly.
• Maintenance Responsibilities: The
organization is responsible for
maintaining, updating, and repairing
storage hardware, requiring
dedicated IT resources.
• Accessibility Constraints: Data
access is typically limited to the
organization’s local network,
potentially hindering remote access
and collaboration.
• Disaster Recovery Challenges:
Implementing robust disaster
recovery solutions can be complex
and expensive, often requiring
additional infrastructure.
• Security Management: Security
measures must be managed
internally, including physical
security, data encryption, and
access controls.
• Performance: Offers high-
performance storage options
tailored to specific organizational
needs but may lack the flexibility of
cloud solutions.
 • Lifecycle Management: Requires
manual management of data
lifecycle, including backups,
archiving, and data retention
policies.
Object Storage vs. Block Storage in Cloud
Block Storage
• Data Structure: As the name
suggests, data is stored in the form
of blocks.
• Fixed-Size Chunks: Stores data in
fixed-size chunks called blocks,
each with its own address but no
metadata (additional information) to
provide context for what the block
of data is all about.
• Common Usage: It is the most
commonly used storage type for
Object Storage
applications requiring high
performance and low latency, such
as databases and virtual machines.
• Performance: Offers high IOPS
(Input/Output Operations Per
Second) and low latency, making it
suitable for transactional workloads
and real-time applications.
• Flexibility: Allows for the
customization of storage
configurations, such as choosing
between SSDs for high performance
or HDDs for cost-effective storage.
• Integration: Easily integrates with
various cloud services and virtual
machines, providing seamless
storage solutions for compute
instances.
• Data Management: Requires the
user to manage the file system,
including formatting, partitioning,
and maintaining the integrity of the
data.
• Use Cases:
o Databases: Ideal for
relational and NoSQL
databases that require fast
and reliable storage.
o Transactional Workloads:
Suitable for applications
that perform a large number
of read/write operations.
o High-Performance
Computing (HPC): Supports
compute-intensive
applications that demand
quick data access and
processing.
o Virtual Machines: Provides
persistent storage for VM
instances, ensuring data
durability and availability.
• Data Structure: Stores data as
objects, each containing the data
itself, metadata, and a unique
identifier.
• Scalability: Highly scalable,
allowing for the storage of vast
amounts of unstructured data
without the need for hierarchical file
systems.
• Metadata-Rich: Each object can
have extensive metadata, enabling
better data management,
searchability, and organization.
• Accessibility: Accessed via RESTful
APIs, making it easy to integrate
with web-based applications and
services.
• Cost Efficiency: Often more cost-
effective for storing large volumes of
data, especially for archival and
backup purposes.
• Durability and Availability:
Provides high durability through
 data replication across multiple
locations and regions, ensuring data
is protected against loss.
• Performance: Optimized for high-
throughput and large-scale data
access rather than low-latency
operations.
• Data Management: Simplifies data
management with features like
automatic replication, lifecycle
policies, and versioning.
• Use Cases:
o Media Storage: Ideal for
storing videos, images, and
audio files that require easy
access and distribution.
o Backup and Archiving:
Suitable for long-term data
retention with cost-effective
storage options.
o Content Distribution:
Facilitates the delivery of
content to users through
integration with CDN
(Content Delivery Networks)
and web applications.
o Big Data Analytics:
Supports the storage of
large datasets used in
analytics, machine learning,
and data processing
applications.
MULTITENANT:
• Multitenant Environment:
o Customers share the same
application, operating
environment, hardware, and
storage mechanism.
o Distinct from virtualization,
where every application
runs on a separate virtual
machine with its own
operating system.
o Analogy: An apartment
building where residents
have keys to their own
apartments but share
infrastructure like water and
power.
▪ Provider (landlord)
sets overarching
rules and
performance
expectations.
▪ Individual customers
have private access
to their data.
• Multitenant Architecture:
o Refers to hardware or
software architecture where
systems, software
applications, or data
belonging to multiple
organizations or individuals
are hosted on the same
physical hardware.
• Single-Tenant Architecture:
o Hardware and its resources
are exclusively dedicated to
one tenant.
• Comparison of Attributes:
Multitenant Single-Tenant
Cloud Cloud
Serves multiple Serves one
tenants with one tenant with one
instance instance
Makes cost-
Often costs more
effective use of
due to dedicated
shared
resources
resources
 Multitenant Single-Tenant
Cloud Cloud
Isolates tenant Isolates tenant
data with tight data with private
access controls infrastructure
Offers efficient Meets specific
deployment and data privacy
scalability requirements
Relies on the Relies on the
vendor for operator for
maintenance maintenance
Examples of Multitenant Cloud
Architecture
• Most commercial public cloud
services are based on multitenant
clouds, including:
o Email Services:
▪ Gmail
▪ Outlook
o Streaming Services:
▪ Netflix
▪ Amazon Prime Video
o CRM Software:
▪ Salesforce
▪ Oracle NetSuite
Why Does Multitenant Cloud
Architecture Matter?
• Cloud service providers offer
multitenant applications and
services to share cloud compute
resources, providing numerous
benefits for both providers and
customers.
Benefits of a Multitenant Cloud
• Efficiency, Flexibility, and
Scalability:
o Easy to onboard groups of
users regardless of size
(e.g., onboarding 10,000
users from one company or
10 users from 1,000
companies).
o Multitenant clouds can
easily scale and reallocate
resources when and where
needed, avoiding outages or
slowdowns based on
demand.
• Cost Savings:
o Efficient usage and
allocation of resources lead
to lower costs.
o Tenants don’t pay for
unused compute power or
storage.
o Maintenance, upgrades, and
updates to the
infrastructure are managed
by the service provider.
• Security:
o Although some industry and
government regulations
prohibit shared
infrastructure, a cloud
provider with a worldwide
footprint can offer superior
protection.
o Ability to implement new or
updated policies on a global
scale across the entire
cloud.
What About Hybrid Security Solutions?
• Current Trends:
o Organizations rely heavily on
cloud-based apps and
platforms like Microsoft
Azure and Amazon Web
Services (AWS).
 o Many are shifting to secure
their traffic in the cloud
instead of relying solely on
on-premises data security.
• Vendor Response:
o On-premises hardware
vendors promote hybrid
solutions where:
▪ Appliances handle
data center security.
▪ Similar security
stacks in cloud
environments
handle mobile or
branch security.
• Challenges:
o Hybrid strategy complicates
enterprise security.
o Does not offer the speed,
scale, global visibility, or
threat intelligence benefits
of a true cloud service.
o These benefits are only
provided by a global
multitenant architecture.
Multitenancy, Security, and Zscaler
• Modern Security Needs:
o Applications, sensitive data,
and traffic run or are stored
outside the traditional
perimeter.
o Users are often outside the
perimeter, requiring
consistent and secure
access to apps and services
from any location and
device.
o This need led to the rise of
Secure Access Service Edge
(SASE).
• Definition of SASE:
o Gartner Definition: A
solution that offers
“comprehensive WAN
capabilities with
comprehensive network
security functions (such as
SWG, CASB, FWaaS, and
ZTNA) to support the
dynamic secure access
needs of digital
enterprises.”
o Characteristics:
▪ Distributed and
globally accessible.
▪ Provides seamless
and secure
connectivity.
▪ Ensures high
bandwidth, low
latency, and a great
user experience
anywhere.
The Multitenant Advantage
• Limitations of Single-Tenant SASE
Solutions:
o Some SASE solutions use a
dedicated instance per
customer, limiting
scalability.
o Relies on single-tenant
architecture using network-
based access policies,
which should be based on
user access.
o Results in:
▪ Suboptimal user
experience due to
backhauling traffic
from the cloud to the
vendor and then to
 the desired
applications.
▪ More complex
policies that don’t
translate well to
SASE.
▪ A patchwork of
products or services
connected only
through an overlay
user interface,
lacking proper
integration.
• Advantages of Multitenant SASE
Solutions:
o Built from the ground up to
be multitenant.
o Well-developed cloud
infrastructures distributed
across upwards of 100 data
centers worldwide.
o Allows users to access any
of the SASE provider’s data
centers and stay secure.
o Scales globally on demand
for fast-growing
organizations.
Zscaler and Multitenancy
• Scalability and Performance:
o Leverages multitenancy to
scale.
o Easily scans every byte of
data coming and going—on
all ports and protocols,
including SSL—without
negatively impacting
performance or user
experience.
o The Zscaler cloud is always
up to date.
o Instantly sends protection to
all customers upon
detecting a new threat
anywhere in the world.
• Unified Security Platform:
o Zscaler security controls are
built into a unified platform.
o Controls communicate with
each other to provide a
cohesive picture of all
network traffic.
o Single interface provides
insight into every request by
user, location, and device
globally within seconds.
Google Cloud Platform (GCP)
Overview
• Suite of Services:
o GCP is a suite of cloud
computing services offered
by Google.
o Provides a series of modular
cloud services including
computing, data storage,
and data analytics.
• Public Cloud Vendor:
o Competes with Amazon
Web Services (AWS) and
Microsoft Azure.
• Access Models:
o Customers can access
computer resources housed
in Google’s data centers
around the world.
o Available for free or on a
pay-per-use basis.
Google Cloud vs. Google Cloud Platform
Google Cloud
• Definition:
History of GCP
o Includes a combination of
services available over the
internet.
o Helps organizations go
digital.
• Components:
o Google Workspace
(formerly G Suite and
Google Apps): Provides
identity management,
Gmail, and collaboration
tools.
o Enterprise Versions:
Android and Chrome OS.
o APIs: For machine learning
and enterprise mapping
services.
Google Cloud Platform (GCP)
• Definition:
o Provides public cloud
infrastructure for hosting
web-based applications.
o Part of Google Cloud.
Google Cloud - Other Services
• Google Workspace:
o Formerly known as G Suite
and Google Apps.
o Provides identity
management for
organizations, Gmail, and
collaboration tools.
• Enterprise Versions:
o Android and Chrome OS.
GCP Infrastructure, Design, and Zones
• APIs:
Global Infrastructure
o Machine learning and
enterprise mapping
services.
• 2008:
o GCP first came online with
the launch of App Engine.
• App Engine:
o Announced as a developer
tool allowing customers to
run web applications on
Google infrastructure.
o Made available to 10,000
developers for feedback
during the preview release.
o Early-adopter developers
could run apps with:
▪ 500 MB of storage
▪ 200 million
megacycles of CPU
per day
▪ 10 GB of bandwidth
per day
• 2011:
o Google pulled App Engine
out of preview mode.
o Made it an official, fully
supported Google product.
• Current Standing:
o GCP is one of the top public
cloud vendors in the world.
o Notable customers include
Nintendo, eBay, UPS, The
Home Depot, Etsy, PayPal,
20th Century Fox, and
Twitter.
 • 24 Locations Worldwide: • Machine Learning

o GCP resources are offered GCP Pros and Cons

across 24 global locations.
Strengths
• Regions and Availability Zones:
• Comprehensive Documentation:
o Region: A specific Extensive and detailed
geographical area. documentation for users.

o Availability Zones: Within a • Global Backbone Network:

region, zones are isolated
o Uses advanced software-
from single points of failure.
defined networking and
Resource Distribution edge-caching services.

• HTTP Global Load Balancer: o Delivers fast, consistent,

and scalable performance.
o Global in scope.
Weaknesses
o Can receive requests from
any Google edge locations • Fewer Services:
and regions.
o Offers far fewer services
• Regional Resources: compared to AWS and
Azure.
o Storage is distributed across
multiple zones within a • Opinionated Model:
region for redundancy.
o Has a specific model of how
• Zonal Resources: their cloud services should
be used, which may limit
o Compute instances are
flexibility for some users.
available only in one specific
zone within a specific GCP Computing Services
region.
Google Compute Engine
Deployment Considerations

• Location Selection:

o Must select locations based

on performance, reliability,
scalability, and security
needs of the organization.

GCP Services

Categories of Services

• Computing and Hosting

• Storage and Database • Description:

• Networking o Compute service offered by
• Big Data Google Cloud.
 o IaaS (Infrastructure As A
Service) providing virtual
machines hosted on
Google’s infrastructure.
When & Where to Use Compute Engine
• Use Cases:
o Need low-level access or
fine-grained control of the
operating system, network,
and other operational
characteristics (e.g., custom
compiled kernel).
o Applications with extremely
consistent utilization.
o 1:1 container to VM
mapping.
o Migrating existing systems.
Google App Engine
• Description:
o PaaS (Platform As A Service)
for building scalable web
applications and IoT
backends.
o Automatically scales
applications based on
traffic.
o Provides built-in services
and APIs, such as
Datastores, NoSQL, user
authentication API, etc.
When & Where to Use App Engine
• Use Cases:
o Green-field applications
requiring server-side
processing and logic.
o Stateless applications.
o Rapidly developing CRUD-
heavy applications.
o Applications composed of a
few services.
o Deploying complex APIs.
When Not to Use App Engine
• Limitations:
o Stateful applications
requiring lots of in-memory
states.
o Applications built with large
or opinionated frameworks
or with slow start-up times.
o Systems requiring protocols
other than HTTP.
Google Kubernetes Engine (GKE)
• Description:
o Managed Kubernetes
service for running
containerized applications.
o Based on Google’s internal
container software.
When & Where to Use GKE
• Use Cases:
o Providing developers
architectural flexibility.
o Minimizing operational
costs.
o Applications that can be
easily containerized or are
already containerized.
o Hybrid or multi-cloud
environments.
 o Systems leveraging stateful o Managed compute platform
and stateless services. for running stateless
containers.
o Strong CI/CD Pipelines.
o Containers can be invoked
When Not to Use GKE
via web requests or Pub/Sub
• Limitations: events.

o When managing the o Serverless, abstracts away

underlying infrastructure is infrastructure management.
burdensome for the team.
o Combines benefits of App
o Applications requiring very Engine with the power of
low-level access to GKE.
hardware (e.g., custom
o Can also run on your own
kernel, networking).
GKE cluster for runtime
Cloud Functions environment control.

• Description: When & Where to Use Cloud Run

o Lightweight compute • Use Cases:

solution for creating single-
o Stateless services that are
purpose, stand-alone
easily containerized.
functions.
o Event-driven applications
o Responds to cloud events
and systems.
without managing servers or
runtime environments. o Applications requiring
custom system and
o Highly elastic and has
language dependencies.
minimal operational
overhead due to being a When Not to Use Google Cloud Run
serverless platform.
• Limitations:
When & Where to Use Cloud Functions
o Highly stateful systems.
• Use Cases:
o Systems requiring protocols
o Dynamic, event-driven other than HTTP.
plumbing (connecting
o Compliance requirements
services or reacting to log
demanding strict controls
events).
over the low-level
o Event-driven applications environment and
and functions. infrastructure (might be
suitable with Knative GKE
o Deploying simple APIs.
mode).
o Quick data transformations
(ETL).

Google Cloud Run

• Description:
GOOGLE CLOUD PLATFORM:
Ways of Accessing GCP
• Google Cloud Console:
o Web-based interface for
managing GCP resources.
• Cloud SDK via Cloud Shell:
o Command-line tool for
managing resources through
Cloud Shell.
IAM:
Storage in Google Cloud Platform
Storage Options
• Google Cloud Persistent Disk
(Block Storage)
• Google Cloud Filestore (Network
File Storage)
• Google Cloud Storage (Object
Storage)
• Google Cloud Storage for Firebase
• Google Cloud Storage Transfer
Service
Google Cloud Persistent Disks (Block
Storage)
• Description:
o Offers dependable and
quick storage for virtual
machine instances on GCP.
• Features:
o Backup: Attach discs of
various sorts and sizes (e.g.,
SSDs or HDDs) to necessary
virtual machines.
o Performance: Boosts
throughput and decreases
latency.
o Durability: Supports
snapshots, enabling disc
backups without data loss.
o Flexibility: Change disk size
without losing data.
o Security:
▪ Encrypt data using
Google keys or
customer-managed
keys.
▪ Restrict disk access
to specific users,
groups, or resources
using IAM roles.
Google Cloud Filestore (Network File
Storage)
• Description:
o Enables reliable
performance and high
availability for storing and
sharing files.
• Features:
 o File Creation: Mount files
onto necessary paths and
access from GCP or on-
premises instances.
o Storage Tiers:
▪ Standard Tier:
Throughput of 800
MB/s per share,
minimal latency,
good performance.
▪ Premium Tier:
Throughput of 1.2
GB/s per share,
enables SSD
storage, beneficial
for high IOPs and low
latency applications.
o Snapshots: Automatic
snapshots to prevent data
loss.
Google Cloud Storage (Object Storage)
• Description:
o Scalable, durable, and
secure.
o Region-independent;
accessible from anywhere.
o Suited for static data like
videos and photos.
• Features:
o Data Management: Save
data based on access
frequency (Standard,
Coldline, Archive).
o Reliability: Data encryption,
replication, and lifecycle
management.
o Integration: Integrates with
GCP services like Cloud
Functions, BigQuery, and AI
Platform.
Benefits of Using Archival Storage
Types of Storage Class
• Google Cloud Platform (GCP)
offers different storage classes
for various purposes based on
performance needs:
1. Standard Storage
▪ Use Case:
Frequently accessed
data for general
purposes.
▪ Features: Highly
available, low
latency.
2. Nearline Storage
▪ Use Case: Data
must be highly
available but not
accessed as
frequently as
Standard Storage.
▪ Features: Access
within seconds or
minutes.
3. Coldline Storage
▪ Use Case: Data
accessed
infrequently.
▪ Features: Access
within hours.
4. Archival Storage
▪ Use Case: Data in
infrequent access
that needs long-term
retention.
▪ Features: Cost-
effective for legal,
regulatory, or
business
preservation needs.
 1. Low Cost:
o Infrequently accessed data
results in lower storage
costs.
2. High Durability:
o Durability is comparable to
other storage options.
3. Long Retention Period:
o Data can be stored for over 8
years.
4. Lifecycle Management:
o Automatically move data to
Archival Storage using
lifecycle management rules.
Cloud Storage
• Description:
o Fully managed, scalable
service with no need to
provision capacity ahead of
time.
o Each object has a URL.
o Consists of buckets that
hold storage objects
(immutable – no edit, create
new versions).
o Encrypts data on the server
side before writing to disk
(default = HTTPS).
o Objects can be moved to
other GCP storage services.
• Bucket Creation:
o Globally Unique Name
o Geographic Location:
Specify where the bucket
and its contents are stored.
o Default Storage Class
Use Cases of Cloud Storage
• Integrated Repository for
Analytics and ML:
o Strong consistency ensures
accuracy in analytics
workloads.
• Media Content Storage and
Delivery:
o Provides availability and
throughput needed to
stream audio or video
directly to applications and
websites.
• Backups and Archives:
o Backup data can be used
beyond recovery.
o All storage classes have
millisecond latency and are
accessed through a single
API.
Features of GCP Storage
• Object Lifecycle Management:
o Define conditions to trigger
data deletion or transition to
a cheaper storage class.
• Object Versioning:
o Continue to store old copies
of objects when deleted or
overwritten.
• Retention Policies:
o Define minimum retention
periods before objects can
be deleted.
• The Object Holds:
o Place a hold on an object to
prevent deletion.
• Encryption Options:
o Customer-Managed
Encryption Keys: Encrypt
 object data with keys stored
by the Cloud Key
Management Service and
managed by you.
o Customer-Supplied
Encryption Keys: Encrypt
object data with keys
created and managed by
you.
• Uniform Bucket-Level Access:
o Control access uniformly by
disabling object ACLs.
o High performance.
o Internet-scale.
o Data encryption at rest.
o Data encryption in transit by
default from Google to
endpoint.
o Online and offline import
services available.
GCP Networking
INTERACTING WITH GCP:

• Requester Pays:

o Require access to include a

project ID for billing network
charges, operation charges,
and retrieval fees.

• Bucket Lock:

o Configure a data retention

policy governing how long
objects must be retained.

• Pub/Sub Notifications for Cloud Google Cloud Networking Services or

Storage:
o Send notifications to
Pub/Sub when objects are
created, updated, or
deleted.
• Cloud Audit Logs with Cloud
Storage:
o Maintain admin activity logs
and data access logs for
Cloud Storage resources.
• Object- and Bucket-Level
Permissions:
o Cloud Identity and Access
Management (IAM) allows
control over who has access
to buckets and objects.
• Additional Storage Features:
Technologies
• Connect
• Cloud Connectivity
• Virtual Private Cloud (VPC)
• Cloud DNS
• Network Connectivity Center
• Private Service Connect
• Service Directory
Scale
• Cloud Load Balancing
• Cloud CDN
• Media CDN
• Cloud Service Mesh
Secure
 • Cloud Armor
• Cloud IDS
• Cloud NAT
• VPC Service Controls
Optimize
• Network Intelligence Center
• Network Service Tiers
Virtual Private Cloud (VPC)
• Description:
o Provides a private network in
the cloud.
o Manage IP address range,
subnets, firewalls, and other
networking elements.
• Features:
o Secure and Isolated
Environment: Ensures GCP
resources are isolated.
o Access Management:
Configure IP addresses
allowed to access
resources.
• Importance:
o Isolate GCP resources from
one another.
o Control access by managing
incoming and outgoing
traffic.
o Easily scale applications.
Cloud Load Balancing
• Description:
o Fully distributed, software-
defined, managed service
for all traffic.
o Provides high performance
and availability by
distributing load-balanced
compute resources across
single or multiple regions,
close to end-users.
o Enables auto-scaling based
on incoming internet traffic.
• Features:
o Scalability: Quickly scale
applications on Compute
Engine without pre-warming.
o Distribution: Distribute
compute resources near
users while meeting high-
availability requirements.
o Integration: Integrates with
Cloud CDN.
o Anycast IP: Can put
resources behind a single
anycast IP.
o Intelligent Autoscaling:
Scale up or down based on
traffic.
Content Delivery Network (CDN)
• Description:
o Integrated with GCP
services.
o Uses Google’s globally
distributed edge points to
cache HTTP(S) Load
Balanced content close to
users.
• Benefits:
o Accelerated Content
Delivery: For websites and
applications served from
Compute Engine using
Google’s edge caches.
o Performance Optimization:
Lowers network latency,
 offloads origin traffic, and
reduces serving costs.
• Setup:
o Enable Cloud CDN with a
single checkbox after setting
up HTTP(S) load balancing.
Cloud Interconnect
• Description:
o Connects on-premises
networks to Google’s
network through a highly
available, low-latency
connection.
• Types:
o Dedicated Interconnect:
For high-volume data
connections.
o Partner Interconnect: For
connections through a
supported service provider.
Cloud VPN
• Description:
o Connects on-premises
networks to Google Cloud
VPC networks through an
IPsec VPN connection.
o Encryption: Traffic is
encrypted by one VPN
gateway and decrypted by
the other.
Other Networking Services
Cloud Armor
• Description:
o Provides DDoS defense and
web application firewall
(WAF) capabilities.
o Protects applications and
websites against denial of
service and web attacks.
Network Telemetry
• Description:
o Offers detailed visibility into
your network.
o Helps monitor and
troubleshoot with tools like
VPC Flow Logs, Firewall
Rules Logging, and Cloud
Logging and Monitoring.
Cloud DNS
• Description:
o Scalable, reliable, and
managed authoritative
Domain Name System
(DNS) service.
o Runs on the same
infrastructure as Google.
o Publishes domain names to
the global DNS cost-
effectively.
Network Service Tiers
• Description:
o Offers Standard and
Premium network service
tiers.
o Provides performance
versus cost options to
optimize specific needs.
Private Access for Google Services
• Description:
o Allows instances with
internal IP addresses to
reach Google APIs and
services without using
external IP addresses.
Cloud AI Services ▪ Universal speech
models.
Overview
• Vertex AI Agent Builder
• AI as a Service (AIaaS):
o Description:
o Cloud-based platforms and
solutions offering AI ▪ Create generative AI
capabilities and resources. agents and
applications
o Makes AI tools and
grounded in
technologies more
organizational data.
accessible, scalable, and
cost-effective. ▪ No-code agent
building console
Examples
with powerful
• Gemini 1.5 Models: grounding,
orchestration, and
o Latest and most advanced customization
multimodal models in capabilities.
Vertex AI.
o Use Cases:
• Generative AI: Vertex AI Studio
▪ Building multimodal
o Description: conversational AI
▪ A tool for rapidly agents.
prototyping and ▪ Creating Google-
testing generative AI quality search
models. experiences on your
▪ Test sample own data.
prompts, design ▪ Enjoying powerful
prompts, and orchestration,
customize grounding, and
foundation models customization tools.
and LLMs for
specific tasks. • Generative AI Document
Summarization
o Features:
o Description:
▪ Prompt design and
tuning with an easy- ▪ One-click solution
to-use interface. establishing a
pipeline to extract
▪ Code completion text from PDFs,
and generation with create summaries
Codey. with Vertex AI
▪ Generating and Generative AI Studio,
customizing images and store
with Imagen. summaries in a
BigQuery database.
o Features:

▪ Process and
summarize large
documents using
Vertex AI LLMs.

▪ Deploy applications
orchestrating the
documentation
summarization
process.

▪ Trigger pipelines with

PDF uploads and
view generated
summaries.

Multitenant

Definition

• Multitenant Hosting:

o Also called shared hosting.

o A single physical computer

or virtual machine (VM) is
shared among multiple
users or client
organizations.

• Cloud Service Providers:

o Typically offer multitenant

hosting solutions as a lower-
cost alternative to single-
tenant or dedicated hosting
solutions.

• Multitenant Cloud:

o Single cloud instance and

infrastructure built to enable
multiple cloud customers
 (tenants) to efficiently share
scalable computing
resources in a public or
private cloud.
o Each cloud customer’s data
is kept separate.
o Tenants are generally
unaware of each other’s
presence.
o Essential to most software-
as-a-service (SaaS)
offerings.
How Multitenancy Works
• Shared Resources:
o Customers share the same
application, operating
environment, hardware, and
storage mechanism.
• Distinct from Virtualization:
o Unlike virtualization where
each application runs on a
separate VM with its own
operating system.
• Analogy:
o Similar to an apartment
building:
▪ Residents have keys
to their own
separate
apartments.
▪ All share
infrastructure that
delivers water and
power.
• Provider Responsibilities:
o Sets overarching rules and
performance expectations
for customers (tenants).
• Tenant Access:
o Individual customers have
private access to their data.
Benefits of Multitenant Cloud
1. Efficiency, Flexibility, and
Scalability:
o Easy onboarding of large or
numerous user groups.
o No difference between
onboarding 10,000 users
from one company or 10
users from 1,000
companies.
o Can easily scale and
reallocate resources to
prevent outages or
slowdowns.
2. Cost Savings:
o Efficient usage and
allocation of resources lead
to lower costs.
o Tenants don’t pay for
compute power or storage
they may not use.
o Maintenance, upgrades, and
infrastructure updates are
handled by the service
provider.
3. Security:
o Cloud providers with a
worldwide footprint offer
superior protection.
 o Ability to implement new or
updated security policies
globally across the entire
cloud.

Multitenant Cloud in SaaS

• Essential Architecture:

o Most SaaS offerings rely on

multitenant architecture to
deliver services efficiently.

o Ensures data isolation and

security while optimizing
resource usage.

Cloud Management and Security
Data Center
• Definition:
o A physical location that
stores computing machines
and their related hardware
equipment.
o Contains the computing
infrastructure required by IT
systems, such as servers,
data storage drives, and
network equipment.
o A centralized facility
equipped with computing
resources like servers,
storage systems, networking
equipment, and cooling
infrastructure used for
delivering cloud services
over the Internet.
• Importance:
o Every business needs
computing equipment to run
web applications, offer
services to customers, sell
products, or run internal
applications for accounts,
human resources, and
operations management.
o As the business grows and IT
operations increase, the
scale and amount of
required equipment also
increase exponentially.
o Distributed equipment
across several branches and
locations is hard to
maintain.
o Benefits:
▪ Backup Power
Supplies: Manage
power outages.
▪ Data Replication:
Across several
machines for
disaster recovery.
▪ Temperature-
Controlled
Facilities: Extend
the life of the
equipment.
▪ Security Measures:
Easier
implementation for
compliance with
data laws.
Why Modern Data Centers Evolve
• The amount of data generated and
stored by companies has increased
exponentially.
• Virtualization Technology:
Separates software from the
underlying hardware.
• Networking Innovations: Made it
possible to run applications on
remote hardware.
What Is Inside a Data Center?
1. Compute
o Computing Infrastructure:
▪ Includes various
types of servers with
 different internal facilitates
memory, processing additional
power, and other components.
specifications.
▪ Advantages:
▪ Rack Servers:
▪ Take
▪ Flat, up
rectangular less
design. spac
e
▪ Can be
than
stacked in
rack
racks or
serve
shelves in a
rs.
server
cabinet. ▪ Offer
highe
▪ Cabinets
r
feature mesh
proce
doors, sliding
ssing
shelves, and
spee
space for
d.
cables and
fans. ▪ Mini
mal
▪ Blade Servers:
wirin
▪ Modular and g.
stackable in
▪ Lowe
a smaller
r
area.
powe
▪ Physically r
thin, typically cons
containing umpti
memory, on.
CPUs,
2. Storage
integrated
network o Storage Infrastructure:
controllers,
▪ Block Storage
and some
Devices:
built-in
storage ▪ Include hard
drives. drives and
solid-state
▪ Slide into a
drives.
storage unit
called a ▪ Store data in
chassis, blocks,
which providing
 many switches, routers,
terabytes of and firewalls.
data
▪ Connect data center
capacity.
components to each
▪ Storage other and to end-
Area user locations.
Networks
▪ Ensure flawless data
(SANs):
movement and
▪ Cont connectivity across
ain the system.
sever
Support Infrastructure
al
intern • Components:
al
drive o Power subsystems.
s. o Uninterruptible power
Act as supplies (UPS).
large o Backup generators.
block
storage o Ventilation and cooling
systems. equipment.

▪ File Storage o Fire suppression systems.

Devices: o Building security systems.
▪ Include Standards in Data Center Design
network-
attached • As data centers grew in size and
storage complexity, and began storing
(NAS). sensitive and critical information,
regulations were imposed.
▪ Can store a
large volume • Telecommunications Industry
of files. Association (TIA) Standards:

▪ Suitable for o Architecture and Topology

creating
o Environmental Design
image and
video o Power and Cooling
archives. Systems and Distribution

3. Network o Cabling Systems,

Pathways, and
o Network Infrastructure:
Redundancy
▪ Consists of
o Safety and Physical
numerous
Security
networking devices
such as cables, Tier Classifications
Tier 1 or replacement of equipment
without system shutdown.
• Description: Basic capacity level to
support IT systems for an office • Requirements:
setting and beyond.
o Redundancy on support
• Requirements: systems like power and
cooling units.
o Uninterruptible power
supply (UPS) for power • Downtime Expectation: Annual
outages and spikes. downtime of 1.6 hours.

o Physical area for IT systems. Tier 4

o Dedicated cooling • Description: Contains several

equipment running 24/7.
o Backup power generator.
• Protection: Against service
disruptions from human error but
not against unexpected failures or
outages.
• Downtime Expectation: Annual
downtime of 29 hours.
Tier 2
physically isolated systems to avoid
disruption from both planned and
unplanned events.
• Requirements:
o Completely fault-tolerant
with fully redundant
systems.
• Downtime Expectation: Annual
downtime of only 26 minutes.

• Description: Provides additional

cooling components for better
maintenance and safety against
disruptions.

• Requirements:

o Engine generators.

o Chillers.

o Cooling units.

o Pumps.

• Protection: Can remove

components without shutting down,
but unexpected failures can affect
the system.

• Downtime Expectation: Annual

downtime of 22 hours.

Tier 3

• Description: Provides greater data

redundancy, allowing maintenance

Types of Data Centers
On-Premises Data Centers
• Definition: Fully owned by the
company, storing sensitive data and
critical applications.
• Management: Set up, manage
ongoing operations, purchase, and
maintain equipment internally.
• Benefits:
o Better security through
internal risk management.
o Customizable to meet
specific requirements.
• Limitations:
o Costly to set up and
manage.
o Requires multiple data
centers to avoid single
points of failure.
Colocation Data Centers
• Definition: Large facilities where
companies can rent space to store
their servers, racks, and other
hardware.
• Features:
o Provides security and
support infrastructure like
cooling and network
bandwidth.
• Benefits:
o Reduces ongoing
maintenance costs.
o Fixed monthly costs to
house hardware.
o Geographical distribution to
minimize latency and be
closer to end-users.
• Limitations:
o Challenging to source
facilities globally and in
targeted areas.
o Costs can add up as you
expand.
Cloud Data Centers
• Definition: Rent both space and
infrastructure from cloud providers.
• Management: Cloud providers
maintain large data centers with full
security and compliance.
• Benefits:
o Reduces hardware
investment and ongoing
maintenance costs.
o Greater flexibility in usage
options, resource sharing,
availability, and
redundancy.
How AWS Manages Its Data Centers
• Regions and Availability Zones
(AZs):
o Region: Physical locations
around the world where
AWS clusters data centers.
o Availability Zone (AZ):
Groups of logical data
centers within a region,
isolated from each other in
terms of location, power,
and water supply.
• Advantages of Multiple AZs:
 o Reliability: High availability o Routine machine
and fault tolerance. maintenance and
diagnostics.
o Scalability: Enhanced
scalability and lowest o Water, power,
possible latency. telecommunications, and
internet connectivity
o Isolation: Protection against
backups.
localized issues like power
outages, natural disasters. Data Layer

• Interconnection: • Data Protection:

o AZs are interconnected with o Threat and electronic

high-bandwidth, low-latency intrusion detection systems.
networking over fully
o Electronic control devices at
redundant, dedicated metro
server room access points.
fiber.
o External auditing of more
o Traffic Encryption: Traffic
than 2,600 requirements
between AZs is encrypted.
throughout the year.
o Network Performance:
Environmental Layer
Sufficient for synchronous
replication between AZs. • Environmental Controls:
AWS Data Centers - Security Layers o Sensors and responsive
equipment to detect
Perimeter Layer
flooding, fire, and other
• Security Measures: natural disasters.

o Security guards. o Operations process guide to

avoid and lessen disruptions
o Fencing.
due to natural disasters.
o Security feeds.
o 100% renewable energy and
o Intrusion detection environmental economies of
technology. scale.

o Entry control and • CLOUD AUTOMATION: Cloud

monitoring. Automation

Infrastructure Layer

• Protection Measures: Cloud Automation

o World-class cooling • Processes and Tools:

systems and fire
o Draw from resource pools to
suppression equipment.
define common
o Backup power equipment. configuration items:

▪ VMs

▪ Containers
 ▪ Storage LUNs
▪ Virtual private
networks
o Load application
components and services:
▪ Load balancers
o Create instances using:
▪ Templates
▪ Cloned VMs
▪ Containers
o Assemble items to
construct a more complete
operational environment for Examples of Automation Services from
workload deployment. Public Cloud Providers
• Example:
o A cloud automation
template could:
▪ Create a certain
number of
containers for a
microservices
application
▪ Load the software
components into the
container clusters
workload and its
performance.
o Alerts trigger automatic
scaling tasks, such as:
▪ Adding more
containers to a load-
balanced cluster to
improve
performance
▪ Removing excess
container instances
to pare down
resource usage
• AWS:
o AWS Config
o AWS CloudFormation
o AWS Elastic Compute Cloud
Systems Manager
• Google Cloud:
o Google Cloud Composer
o Google Cloud Deployment
Manager

▪ Connect storage and • IBM Cloud:

a database
o IBM Cloud Orchestrator
▪ Configure a virtual
• Microsoft Azure:
network
o Microsoft Azure Resource
▪ Create load
Manager
balancers for the
clusters o Microsoft Azure Automation
▪ Open the workload
to users
Automation in Multi-Cloud Management
• Workload Management: Vendors
o Configure an application • Vendors Incorporating
performance management Automation Capabilities:
tool to monitor the deployed
 o CloudBolt Software ▪ Monitoring
performance
o CloudSphere

o Flexera
Why is Cloud Automation Important?
o Morpheus Data
• Reduce Errors:
o Snow Software Inc.
o Enables the creation of
o VMware
predictable and dependable
o Zscaler processes

o Helps reduce the human

error that inevitably
Cloud Automation accompanies manual cloud
• Definition: management

o Implementation of tools and • Boost Security:

processes that reduce or o Monitor and log activity
eliminate the manual work across the entire IT
associated with environment
provisioning, configuring,
and managing cloud o Configure security controls
environments. that scan for vulnerabilities
and anomalies
• Capabilities:
o Define access levels to
o Runs on top of virtual applications, data, and
environments more
o Can be leveraged in: • Centralize Governance:
▪ Public clouds o Unified automation platform
▪ Private clouds allows organizations to
standardize governance
▪ Hybrid environments across data centers, even in
▪ Multicloud hybrid clouds
environments o Improves business
o Standardizes processes and continuity
policies across complex IT o Optimizes resource and
environments, including: infrastructure usage
▪ Provisioning o Maximizes performance
resources for
workload o Enhances compliance and
deployments and security
updates • Increase Innovation:
▪ Setting up virtual o Frees IT operations teams
machines (VMs) from mundane manual work
 o Allows focus on valuable, o Utilizes orchestration and
higher-level innovations that automation tools that run on
propel the business virtualized environments

Why Use Cloud Automation? Challenges of Cloud Automation

• Traditional Deployment and • Internet Connectivity:

Operation Challenges:
o Time-consuming and
manual processes
o Involves repetitive tasks
such as:
▪ Sizing, provisioning,
and configuring
resources like VMs
▪ Establishing VM
clusters and load
balancing
▪ Creating storage
logical unit numbers
(LUNs)
▪ Invoking virtual
networks
▪ Actual cloud
deployment
▪ Monitoring and
managing availability
and performance
o Inefficiency and error-
proneness leading to:
o Public cloud services rely on
wide area networks
o Reliability of connection is a
major concern
• Security Options:
o Often limited, especially in
highly regulated industries
o Difficulties with
customization and control
flexibility
• Limited Access to Back-End Data:
o Maintenance burdensome
when complex issues arise
• Platform Lock-In:
o Broad buy-in across the
enterprise can make future
migrations difficult
o The bigger the commitment,
the tougher any future
migration to a different
platform will be

▪ Troubleshooting Common Cloud Automation Tasks

delays

▪ Security
vulnerabilities

• Benefits of Cloud Automation:

o Eliminates repetitive and

manual processes for
deploying and managing
workloads

Establishing Infrastructure as Code (IaC)
• Definition:
o Provisioning and managing
IT infrastructure
automatically using code
and templates instead of
manual hardware
configuration
• Benefits:
o Automatic provisioning and
management of IT resources
at scale—a necessity for
successful DevOps
o Streamlines the code
development and
deployment process
o Supports configuration
management and prevents
configuration drift through
the provisioning of
consistent environments
• Tools:
o Terraform
o Ansible®
o Kubernetes (for container
orchestration)
• Configuration Management Tools:
o Chef Automate
o HashiCorp Terraform
o Puppet Enterprise
o Red Hat Ansible
o Salt Open Source Software
o SaltStack Enterprise
Workload Management and Autoscaling
• Capabilities:
o Track cloud resources in use
o Automatically scale
resources up or down based
on workload demand
o Automate resource
allocation and load
balancing
Hybrid Cloud Setup and Integration
• Benefits:
o Comprehensive view of
resources
o Sync assets between local
data centers and cloud
infrastructure
o Apply the same code to on-
site systems and cloud
resources
o Set standardized policies for
workload allocation across
hybrid environments
o Codify resources and use a
single API across multiple
clouds
Application Development and
Deployment
• Requirements:
o Automate the application
deployment pipeline
 o Provision realistic o Removes human
development and test involvement to increase
environments efficiency

o Use infrastructure as code • Cloud Orchestration:

for consistent environments
o Organizes and sequences
Data Backups automated tasks and
processes across the entire
• Advantages:
infrastructure
o Automated backups save IT
o Unites multiple locations
team’s time
and systems to create fully
o Remove decision-making automated end-to-end
delays workflows

o Reduce costly failures and o Three main aspects:

data loss with regular
▪ Resource
automation
orchestration
Eliminating Cloud Waste
▪ Workload
• Strategies: orchestration

o Use automation tools to ▪ Service

match resources with orchestration
workload demand in real
• Analogy:
time
o Automation is the building
o Eliminate overprovisioning
blocks or foundation
o Utilize pricing discounts like
o Orchestration brings all
reserved instances
parts together into an
Version Control integrated, functioning
whole
• Benefits:
• Example:
o Set up version control for
workflows o Data Backup and
Recovery:
o Improve configuration
management ▪ Orchestration:

o Demonstrate consistent ▪ Plan a

processes to regulators sequence of
tasks based
on logical
Difference Between Cloud Automation events (e.g.,
and Cloud Orchestration time of day,
error codes)
• Cloud Automation:
▪ Manage the
o Streamlines individual tasks entire
and lower-level processes
 process from
start to finish

▪ Automation:

▪ Automate
individual
tasks such
as data
backup and
success
notifications

▪ Trigger
additional
orchestratio
n processes
for error
handling and
corrective
actions