Cloud Computing and DevOps Fundamentals Quiz

Questions and Answers

What is the primary purpose of Infrastructure as Code (IaC)?

• Ensuring manual management of servers by developers
• Reducing the need for skilled IT professionals
• Creating a high-level descriptive coding language
• Automating the supply of IT infrastructure (correct)

Why is infrastructure automation important for a company?

• To control costs, reduce risks, and respond quickly to new business opportunities (correct)
• To eliminate the need for DevOps practices
• To slow down the software delivery lifecycle
• To increase the complexity of IT environments

What is one of the advantages of Infrastructure as Code (IaC) mentioned in the text?

• Increased manual management
• Faster time to market (correct)
• Slower software deployment
• Complexity of IT environments

How does Infrastructure as Code (IaC) contribute to the DevOps practice?

By allowing quick construction of infrastructure and version tracking (A)

What problem does Infrastructure as Code (IaC) help to avoid during deployment?

Inconsistency between IT environments (A)

What is a key reason for automating infrastructure according to the text?

To reduce the time it takes to deploy infrastructure (D)

Which tool offers extensive reporting capabilities and features for tracking project progress, creating branches, and managing dependencies and releases?

Jira (A)

Which tool provides static code analysis to maintain code quality and security, supporting 27 programming languages?

SonarQube (C)

Which tool supports Java, C++, and Python, and offers incremental builds and faster performance compared to Maven?

Gradle (A)

Which platform popularized containerization for dispersed development, automated deployment, and seamless integration with CI/CD servers and major cloud providers?

Kubernetes (D)

Which tool automates distribution and scheduling of containers across a cluster of computers, and has master and worker nodes for efficient container management?

Kubernetes (A)

Which tool facilitates software development and deployment, with extensive plug-in support and a focus on integration with Atlassian products?

Jenkins (B)

Which DevOps tool offers built-in Git and Mercurial workflows and test environments, along with tooltips and auto-completion?

Bamboo (B)

Which DevOps tool is an open-source configuration management tool backed by Red Hat, offering simplicity, convenience, and a secure, lightweight automation solution with an agentless architecture?

Ansible (D)

Which DevOps tool provides integrated DevOps tools for managing the software development lifecycle, with the ability to deploy on-premises using AWS Outposts and a focus on IaaS solutions?

AWS DevOps (C)

Which DevOps tool offers infrastructure monitoring, event tracking, and prediction of outages and security problems, with different versions for command-line, web-based GUI, log data searching, and multi-network monitoring?

Nagios (B)

What does monolithic architecture refer to in the context of software applications?

A single, self-contained software application with a unified code base (A)

What does Infrastructure as Code (IaC) prevent by consistently providing the same environment?

Ad hoc configuration changes and upgrades causing configuration drift (B)

What does microservices architecture depend on?

Independently deployable services with specialized purposes (B)

Why is the declarative approach considered the best fit for most businesses when automating infrastructure with IaC?

It ensures infrastructure consistency (A)

What is a key characteristic of containers that makes them a perfect fit for modern development and application patterns like DevOps, serverless, and microservices?

They package application code and dependencies in standard ways (A)

What does immutable infrastructure effectively prevent when automating infrastructure with IaC?

Configuration drift (D)

What does Infrastructure as Code (IaC) protect against when provisioning is always in the hands of the enterprise?

Productivity loss when experts leave the company (C)

What is a benefit of containers that makes them more appealing than scaling up a complete monolithic program?

They enable microservice architectures (B)

Which fundamental types are encompassed by cloud computing?

IaaS, PaaS, and SaaS (D)

What does IaaS provide?

Virtual server instances, storage, and APIs (B)

What is the aim of cloud computing?

To provide quick and scalable access to computer resources and IT services (B)

Which deployment models are included in cloud computing?

Private clouds, public clouds, hybrid clouds, and multicloud approaches (A)

What are essential DevOps tools in IT infrastructure?

Git for source code management and Jira for issue tracking (D)

What does PaaS offer for applications?

Development tools for applications (B)

What does the CIA triad refer to in the context of security architecture?

Confidentiality, availability, and integrity (D)

What are the foundational concepts of every organization’s security architecture?

Confidentiality, availability, and integrity (C)

What must a modern security practitioner comprehend according to the text?

Principles of architecture, design, management, interoperability, and evolution (B)

What do confidentiality, availability, and integrity collectively constitute in security architecture?

The foundation of every organization’s security architecture (A)

What is the aim and objective of every security program according to the text?

Confidentiality, availability, and integrity (A)

What does the CIA triad collectively serve as according to the text?

The aims and objectives of every security program (A)

What do vulnerabilities enable attackers to do?

Gain greater control and access to a system (D)

What is the primary objective of a Distributed Denial-of-Service (DDoS) attack?

Make a website inaccessible by overwhelming it with traffic (C)

What is the attack surface in a system?

The number of potential access points or attack vectors in a system (C)

What do compliance rules aim to reduce?

Risk and encourage ethical behavior (B)

What is the impact of a data breach?

Loss of confidentiality, integrity, or availability of information or systems (D)

What do attack trees depict?

Potential attacks and the objectives the attacker intends to achieve (C)

What is the primary difference between regulatory compliance and internal compliance?

Regulatory compliance involves adhering to outside authority's guidelines, while internal compliance involves following an organization's processes and best practices. (C)

What are the best practices for NIST SP 800-53 compliance?

Determining data types, classifying and labeling data, automating discovery, conducting risk assessments, documenting improvement strategies, selecting controls, providing training, and ensuring continuity. (D)

What is the main purpose of Federal Risk and Authorization Management Program (FedRAMP)?

It is a standardized method for security assessment, authorization, and ongoing monitoring for cloud goods and services. (D)

What do prescriptive regulations emphasize?

Hazards and specifying precise controls and processes (C)

Which standards are examples of prescriptive, rule-based regulations?

PCI DSS, FedRAMP, FISMA (A)

What is the aim of Federal Information Security Management Act (FISMA)?

Defining a system of rules and security standards for safeguarding government data and activities (D)

Which industry must comply with regulations governing the handling of personal health information (PHI) and the adoption of electronic health records (EHR)?

Healthcare industry (C)

Which regulation focuses on financial document security and retention in the financial services industry?

Sarbanes–Oxley Act (A)

What do outcome-based regulations set without specifying how they are achieved?

Security, risk management, operational objectives, or legal requirements (D)

Which industry complies with regulations governing the handling of payment card data?

Financial services industry (A)

What is the primary basis for penalties under outcome-based regulations?

Inadequacy of programs (D)

What does the ISO27001 series primarily focus on in the manufacturing industry?

Management system for information security (A)

What is the primary focus of the CIA triad in information security?

Ensuring confidentiality, integrity, and availability of organizational assets (A)

Which of the following is an example of a preventative procedure for maintaining data integrity?

Access controls (C)

What is the purpose of non-repudiation in information security?

Demonstrating the authenticity of a message or digital transaction (B)

Which threat is primarily associated with information availability in the context of security incidents?

Denial of Service (DoS) attacks (B)

What is a key control measure for ensuring information security according to the CIA triad?

Principle of least privilege (C)

What differentiates legal non-repudiation from information security non-repudiation?

Admissibility in a court of law (D)

Study Notes

Cloud Computing and DevOps in IT Infrastructure

• Cloud computing encompasses providing hosted services through the internet, with fundamental types being IaaS, PaaS, and SaaS.

• Public clouds allow anyone to purchase services, while private clouds are limited to defined users with access rights.

• Cloud computing aims to provide quick and scalable access to computer resources and IT services, whether private or public.

• Cloud infrastructure components are required to implement cloud computing architecture correctly.

• IaaS provides virtual server instances, storage, and APIs, with providers like Amazon Web Services.

• PaaS offers development tools for applications, with options like Salesforce’s Lightning Platform and AWS Elastic Beanstalk.

• SaaS delivers software applications over the internet, such as Microsoft 365 for productivity and email services.

• Cloud computing deployment models include private clouds, public clouds, hybrid clouds, and multicloud approaches.

• Hybrid clouds combine public and private cloud services for automation, scalability, and control over critical data.

• Multicloud involves using various IaaS providers for reasons like risk reduction and competitive pricing.

• DevOps tools like Git for source code management and Jira for issue tracking are essential in IT infrastructure.

• DevOps lifecycle involves creating, storing, analyzing, and evaluating source code, with tools like Git and Jira being widely used in the software industry.

• The CIA triad is a fundamental concept in information security, and its principles are violated in various security incidents.

• Information security professionals evaluate risks and vulnerabilities based on the potential impact on confidentiality, integrity, and availability of an organization's assets.

• Confidentiality: Information that should be private remains private and accessible only to authorized individuals.

• safeguards: Cryptography and access restrictions.

• Threats: poorly administered systems, insecure networks, intruders, social engineering.

• Integrity: Prevents incorrect or unauthorized changes to information and its source or origin.

• Preventative procedures: Access controls.

• Detective procedures: Discover unapproved changes when preventive mechanisms fail.

• Controls: Principle of least privilege, rotation of duties, separation of duties.

• Availability: Information must be accessible to authorized users before confidentiality and integrity are considered.

• Threats: Denial of Service (DoS) attacks, natural disasters, human errors.

• Business continuity and disaster recovery planning are essential to maintain information availability.

• Non-repudiation: Cryptographic digital signature that demonstrates the authenticity of a message or digital transaction.

• Forms of non-repudiation: Approval, sending, origin, submission, transport, receipt, and knowledge.

• Legal non-repudiation: Differentiated from information security non-repudiation in the legal sense.

• Threats: Phishing attacks, Trojan horses, theft of confidential data.

Description

Test your knowledge of cloud computing and DevOps in IT infrastructure with this quiz. Explore fundamental concepts like IaaS, PaaS, and SaaS, cloud deployment models, and essential DevOps tools. Whether you're familiar with public, private, hybrid, or multicloud approaches, this quiz will challenge your understanding of cloud infrastructure components and DevOps lifecycle.