Оглавление
Dan Sullivan. Google Cloud Certified Professional Cloud Architect Study Guide
Table of Contents
List of Tables
List of Illustrations
Guide
Pages
Google Cloud Certified. Professional Cloud Architect. Study Guide
Acknowledgments
About the Author
About the Technical Editors
Introduction
How Is the Professional Cloud Architect Exam Different from the Associate Cloud Engineer Exam?
What Does This Book Cover?
Interactive Online Learning Environment and Test Bank
Additional Resources
Objective Map
Assessment Test
Answers to the Assessment Test
Chapter 1 Introduction to the Google Professional Cloud Architect Exam
Exam Objectives
Analyzing Business Requirements
Reducing Operational Expenses
Accelerating the Pace of Development
Reporting on Service-Level Objectives
Reducing Time to Recover from an Incident
Improving Compliance with Industry Regulations
Business Terms to Know
Analyzing Technical Requirements
Functional Requirements
Understanding Compute Requirements
Understanding Storage Requirements
Understanding Network Requirements
Nonfunctional Requirements
Exam Case Studies
EHR Healthcare
Business and Technical Considerations
Architecture Considerations
Helicopter Racing League
Business and Technical Considerations
Architecture Considerations
Mountkirk Games
Business and Technical Considerations
Architecture Considerations
TerramEarth
Business and Technical Considerations
Architecture Considerations
Summary
Exam Essentials
Review Questions
Chapter 2 Designing Solutions to Meet Business Requirements
Business Use Cases and Product Strategy
EHR Healthcare
Helicopter Racing League
Mountkirk Games Strategy
TerramEarth Strategy
Application Design and Cost Considerations
Managed Services
Reduced Levels of Services
Preemptible Virtual Machines
Standard vs. Premium Tier Networking
Pub/Sub Lite vs. Pub/Sub
Durable Reduced Availability Storage
Data Lifecycle Management
Systems Integration and Data Management
Systems Integration Business Requirements
EHR Healthcare Systems Integration
Helicopter Racing League
Mountkirk Games Systems Integration
TerramEarth Systems Integration
Data Management Business Requirements
How Much Data Is Stored?
How Long Is Data Stored?
What Processing Is Applied to the Data?
Compliance and Regulation
Privacy Regulations
Data Integrity Regulations
Security
Confidentiality
Integrity
Availability
Success Measures
Key Performance Indicators
Project KPIs
Operations KPI
Return on Investment
Summary
Exam Essentials
Review Questions
Chapter 3 Designing Solutions to Meet Technical Requirements
High Availability
Compute Availability
High Availability in Compute Engine
Hardware Redundancy and Live Migration
Managed Instance Groups
Multiple Regions and Global Load Balancing
High Availability in Kubernetes Engine
High Availability in App Engine and Cloud Functions
High Availability Computing Requirements in Case Studies
Storage Availability
Availability vs. Durability
Availability of Object, File, and Block Storage
Availability of Databases
Self-Managed Databases
Managed Databases
Availability of Caching
High Availability Storage Requirements in Case Studies
Network Availability
High Availability Network Requirements in Case Studies
Application Availability
Scalability
Scaling Compute Resources
Scaling Compute in Compute Engine
Scaling Compute in Kubernetes Engine
Scaling Storage Resources
Network Design for Scalability
Reliability
Measuring Reliability
Reliability Engineering
Summary
Exam Essentials
Review Questions
Chapter 4 Designing Compute Systems
Compute Services and Use Cases
Compute Engine
Specifying a Virtual Machine
Machine Types and Service Accounts
Sole-Tenant VMs
Preemptible Virtual Machines and Spot VMs
Shielded VMs
Confidential VMs
Recommender
Instance Groups
Compute Engine Use Cases
App Engine
App Engine Standard
App Engine Flexible
Custom Runtimes
App Engine Use Cases
Cloud Functions
Events, Triggers, and Functions
Cloud Functions Use Cases
Cloud Run
Kubernetes Engine
Kubernetes Cluster Architecture
Kubernetes Clusters from an Infrastructure Perspective
Kubernetes Clusters from a Workload and Kubernetes Abstraction Perspective
Kubernetes Engine Types of Clusters
Kubernetes Networking
Service Networking
Load Balancing in Kubernetes Engine
Kubernetes Engine Use Cases
Anthos
Overview of Anthos
Anthos Service Mesh
Anthos Multi Cluster Ingress
Anthos Deployment Options
AI and Machine Learning Services
Vertex AI
Cloud TPU
Data Flows and Pipelines
Cloud Pub/Sub Pipelines
Cloud Dataflow Pipelines
Cloud Dataproc
Cloud Workflows
Cloud Data Fusion
Cloud Composer
Compute System Provisioning
Additional Design Issues
Managing State in Distributed Systems
Persistent Assignment of Clients to Instances
Persistent State and Volatile Instances
In-Memory Cache
Databases
Synchronous and Asynchronous Operations
Summary
Exam Essentials
Review Questions
Chapter 5 Designing Storage Systems
Overview of Storage Services
Object Storage with Google Cloud Storage
Organizing Objects in a Namespace
Cloud Storage FUSE
Storage Tiers
Cloud Storage Use Cases
Network-Attached Storage with Google Cloud Filestore
Cloud Filestore Service Tiers
Cloud Filestore Networking
Cloud Filestore Access Controls
Databases
Relational Database Overview
Atomicity
Consistency
Isolation
Durability
Cloud SQL
Cloud Spanner
Analytical Database: BigQuery
Analytics Features
IAM Roles for BigQuery
Loading Data into BigQuery
Batch Loading
Streaming
Choosing a Managed Relational or Analytical Database
NoSQL Databases
Cloud Bigtable
Cloud Datastore
Cloud Firestore
Caching with Cloud Memorystore
Cloud Memorystore for Redis
Cloud Memorystore for Memcached
Data Retention and Lifecycle Management
Networking and Latency
Summary
Exam Essentials
Review Questions
Chapter 6 Designing Networks
IP Addressing, Firewall Rules, and Routers
IP Address Structure
Public vs. Private Addressing
Firewall Rules
Cloud Router
Cloud Armor
Virtual Private Clouds
VPC Subnets
Shared VPC
VPC Network Peering
Hybrid-Cloud Networking
Hybrid-Cloud Design Considerations
Hybrid-Cloud Implementation Options
Cloud VPN
Cloud Interconnect
Direct Peering
Service-Centric Networking
Private Service Connect for Google APIs
Private Service Connect for Google APIs with Consumer HTTP(S)
Private Google Access
Private Google Access for On-Premises Hosts
Private Service Connect for Published Services
Private Service Access
Serverless VPC Access
Load Balancing
Regional Load Balancing
Network TCP/UDP
Internal TCP/UDP
Global Load Balancing
HTTP(S) Load Balancing
SSL Proxy Load Balancing
TCP Proxy Load Balancing
Additional Network Services. Service Directory
Cloud CDN
Cloud DNS
Summary
Exam Essentials
Review Questions
Chapter 7 Designing for Security and Legal Compliance
Identity and Access Management and Related Access Control Services
Identities and Groups
Identities
Groups
Resources
Permissions
Roles
Predefined Roles
Basic Roles
Custom Roles
Policies
Cloud IAM Conditions
IAM Best Practices
Identity-Aware Proxy
Workload Identity Federation
Organization Constraints
Data Security
Encryption
Encryption at Rest
Encryption in Transit
Key Management
Default Encryption
Cloud KMS Key Management
Cloud HSM
Customer-Supplied Keys
Customer-Managed Encryption Keys
Cloud External Key Manager
Cloud Storage Data Access
Security Evaluation
Penetration Testing
Auditing
Security Design Principles
Separation of Duties
Least Privilege
Defense in Depth
Major Regulations
HIPAA/HITECH
General Data Protection Regulation
Sarbanes-Oxley Act
Children's Online Privacy Protection Act
ITIL Framework
Summary
Exam Essentials
Review Questions
Chapter 8 Designing for Reliability
Improving Reliability with Cloud Operations Suite
Monitoring with Cloud Monitoring
Metrics
Time Series
Dashboards
Alerting with Cloud Monitoring
Policies, Conditions, and Notifications
Reducing Alerts
Logging with Cloud Logging
Open Source Observability Tools
Prometheus
Grafana
Release Management
Continuous Delivery
Tests
Unit Tests
Integration Tests
Acceptance Tests
Load Testing
Deployment Strategies
Complete Deployment
Rolling Deployment
Canary Deployment
Blue/Green Deployment
Continuous Integration
Systems Reliability Engineering
Overload
Shedding Load
Degrading Quality of Service
Upstream Throttling
Cascading Failures
Testing for Reliability
Unit Tests
Integration Tests
System Tests
Reliability Stress Tests
Incident Management and Post-Mortem Analysis
Summary
Exam Essentials
Review Questions
Chapter 9 Analyzing and Defining Technical Processes
Software Development Lifecycle Plan
Analysis
Scoping the Problem to Be Solved
Evaluating Options
Cost-Benefit Analysis
Design
High-Level Design
Detailed Design
Development, Testing, and Deployment
Documentation
Maintenance
Continuous Integration/Continuous Delivery
Business Drivers to Adopt CI/CD
CI/CD Building Blocks
Version Control
Secrets Management
Deployment Pipelines
Troubleshooting and Post-Mortem Analysis Culture
Incident Post-Mortems
Learning from Minor Incidents
Learning from Major Incidents
Project Post-Mortems
IT Enterprise Processes
Business Continuity Planning and Disaster Recovery
Business Continuity Planning
Disaster Recovery
Summary
Exam Essentials
Review Questions
Chapter 10 Analyzing and Defining Business Processes
Stakeholder Management
Interests and Influence
Projects, Programs, and Portfolios
Stages of Stakeholder Management
Change Management
Reasons for Change
Digital Transformation
Change Management Methodologies
Team Skill Management
Customer Success Management
Cost Optimization/Resource Optimization
Summary
Exam Essentials
Review Questions
Chapter 11 Development and Operations
Application Development Methodologies
Waterfall
Spiral
Agile
Technical Debt
API Best Practices
Resources and Standard Methods
API Security
Authentication
Authorization
Resource Limiting
Testing Frameworks
Testing Framework Models
Automated Testing Tools
Data and System Migration Tooling
Types of Cloud Migrations
Migration Services and Tools
Interacting with Google Cloud Programmatically
Google Cloud SDK
Google Cloud Shell
Cloud Emulators
Summary
Exam Essentials
Review Questions
Chapter 12 Migration Planning
Integrating Cloud Services with Existing Systems
Migrating Systems and Data to Support a Solution
Planning for Systems Migrations
Planning for Data Migration
Data Governance and Data Migration
Migrating Object Storage
Migrating Relational Data
Software Licensing Mapping
Network Planning
Virtual Private Clouds
Network Access Controls
Scaling
Connectivity
Summary
Exam Essentials
Review Questions
Appendix Answers to the Review Questions
Chapter 1: Introduction to the Google Professional Cloud Architect Exam
Chapter 2: Designing Solutions to Meet Business Requirements
Chapter 3: Designing Solutions to Meet Technical Requirements
Chapter 4: Designing Compute Systems
Chapter 5: Designing Storage Systems
Chapter 6: Designing Networks
Chapter 7: Designing for Security and Legal Compliance
Chapter 8: Designing for Reliability
Chapter 9: Analyzing and Defining Technical Processes
Chapter 10: Analyzing and Defining Business Processes
Chapter 11: Development and Operations
Chapter 12: Migration Planning
Index
Online Test Bank
Register and Access the Online Test Bank
WILEY END USER LICENSE AGREEMENT
