Hard PCA practice questions
Challenge — multi-step scenarios, trade-offs, and subtle distinctions. 23 hard questions available — no sign-up, always free.
A development team writes an automation script that repeatedly runs 'gcloud projects add-iam-policy-binding' to grant a service account the roles/storage.objectViewer role across dozens of projects. During a code review, an operations engineer warns that concurrent executions of this command against the same project could silently overwrite each other's changes and lose bindings. As the cloud architect, what should you advise the team to do to make these IAM updates safe under concurrency?
A logistics company is deploying a Cloud Bigtable cluster to store real-time vehicle tracking events. Each record includes a vehicle ID, a timestamp, and GPS coordinates. During load testing with millions of concurrent writes, engineers observe that most traffic is hitting a single node while others remain nearly idle, causing high write latency. The current row key is a monotonically increasing timestamp prefix. What is the most appropriate change to resolve the throughput bottleneck?
A financial services company runs a production trading platform in Google Cloud and requires a private, high-throughput connection to its on-premises data center. The network team demands a connectivity architecture that qualifies for the 99.99% availability SLA from Google. They plan to use Dedicated Interconnect. Which configuration must the architect implement to meet the 99.99% SLA requirement?
Your SRE team manages a customer-facing payments API running on GKE. Leadership has approved a 99.9% availability SLO measured over a rolling 28-day window. The team wants an automated, low-noise way to be alerted while there is still enough error budget remaining to react, rather than only after the SLO is already breached. Which approach in Google Cloud Observability best meets this requirement?
You operate a customer-facing payments API on Cloud Run and have defined a 99.9% availability SLO over a rolling 30-day window. Your on-call team complains that they receive too many pages for tiny, transient dips that self-resolve, yet they occasionally miss slow-burning degradations until customers report problems. You want an alerting strategy that pages urgently for fast burns and creates lower-priority tickets for slow burns while minimizing false pages. Which approach should you configure in Cloud Monitoring?
A payments team is defining an SLO for their checkout API using Cloud Monitoring service monitoring. Their stated reliability goal is that 99.5% of requests should complete in under 400 ms, measured over a rolling 28-day period. The team wants the SLO configuration to accurately reflect this goal so error budget calculations and burn-rate alerts behave as expected. Which SLO configuration correctly represents this objective?
A financial analytics company runs hundreds of Compute Engine instances across multiple subnets in a Shared VPC. These instances have no external IP addresses but must make frequent outbound HTTPS calls to a third-party market-data provider's public API. During peak trading hours, engineers observe connection failures and log entries indicating dropped outbound connections, while off-peak traffic works fine. Investigation shows the instances are hitting a limit on simultaneous outbound connections to the same destination endpoint. What is the most appropriate action to resolve this?
A retail company runs a microservices platform on GKE and has enabled Cloud Trace to diagnose latency. During a major sales event, engineers report that traces for many slow requests are missing, making it hard to find the bottleneck. The default automatic sampling is capturing only a small fraction of requests under high load. The team wants to increase the likelihood of capturing traces for the slowest requests without a massive increase in ingestion cost or code changes across all services. What should the architect recommend?
A financial services company stores customer records in Cloud Storage buckets encrypted with customer-managed encryption keys (CMEK) in Cloud KMS. To comply with a data protection regulation, when a customer requests deletion of their data, the company must guarantee that all copies—including any that may persist in backups or replicated storage—become permanently unrecoverable, and must be able to prove the data is cryptographically inaccessible. What is the most effective approach to meet this requirement?
A multinational bank must store customer records in Cloud Storage and BigQuery. A new regulatory requirement mandates that the bank retain sole control of the encryption keys outside of Google Cloud, so that Google can never access key material even under a lawful access request. The security team also needs the ability to instantly and permanently revoke Google's ability to decrypt the data. Which encryption approach satisfies these requirements?
A financial services company stores highly sensitive customer records in Cloud Storage buckets encrypted with Cloud KMS customer-managed encryption keys (CMEK). Regulators require that any decryption of this data by cloud provider personnel or automated processes be explicitly justified and, in certain cases, blocked unless the organization approves the reason. The security team wants a mechanism where each request to use the key includes a reason code, and the organization can define policies that automatically deny key access for unapproved justification categories. Which capability should the architect implement?
A financial services company runs a fleet of Compute Engine VMs supporting a customer-facing trading platform. Analysis of the last 18 months shows a stable baseline of 40 n2-standard-8 instances running 24/7, with occasional bursts to 65 instances during market volatility. The finance team wants to reduce Compute Engine spend without sacrificing the ability to scale during bursts, and they want the commitment strategy to survive changes in machine family if engineering later re-architects onto a different VM type. Which approach best optimizes cost while preserving flexibility?
A financial services company runs its core banking application on Compute Engine in the us-central1 region. Regulators require the ability to recover from a full regional outage with a Recovery Time Objective (RTO) of 30 minutes and a Recovery Point Objective (RPO) of 5 minutes. The company wants to minimize ongoing costs while still meeting these targets. Which disaster recovery strategy should the architect design?
A financial services company runs a nightly batch job that consolidates transactions and must complete within a strict 4-hour window to meet regulatory reporting deadlines. The job is fault-tolerant and can checkpoint and resume from partial results. Leadership wants to minimize compute cost while guaranteeing the deadline is never missed. Which compute strategy on Google Cloud best meets these business and technical requirements?
A European retail company stores customer profiles and purchase history in Cloud Storage and BigQuery. Under GDPR, customers can submit a 'right to erasure' request requiring the company to delete all their personal data across systems within a defined timeframe. The architect needs a design that guarantees a specific individual's data can be located and permanently removed on demand, while keeping the deletion process auditable. Which approach best supports this compliance requirement?
A healthcare SaaS company is designing a new multi-tenant platform on Google Cloud. Each tenant is a separate hospital that must have strong data isolation to satisfy contractual and regulatory obligations, but the company also wants to minimize operational overhead and control costs as it onboards hundreds of tenants over time. Tenants share the same application code but must never be able to access another tenant's data, and the company must be able to demonstrate isolation boundaries to auditors. Which design approach best meets these business requirements?
A retail company runs applications on Compute Engine instances in a VPC connected to their on-premises data center via Cloud VPN. The Compute Engine workloads must resolve private hostnames for internal on-premises services (e.g., ldap.corp.internal), and on-premises servers must resolve the private DNS names of Google Cloud resources managed in a Cloud DNS private zone. What should the architect configure to enable bidirectional private DNS resolution?
A financial services company grants broad Editor roles to several project owners for agility. The security team must ensure that, regardless of any IAM allow bindings, no principal outside the company's security group can ever delete Cloud KMS keys or key versions across the entire organization — even if a project owner mistakenly grants such permissions. Which approach best enforces this organization-wide restriction?
A retail company is deploying a new payment processing application on Google Cloud that must be compliant with PCI DSS. The cardholder data environment (CDE) must be isolated from the rest of the corporate workloads, and the auditors require that the scope of PCI assessment be minimized to only the systems that store, process, or transmit cardholder data. Which design approach BEST reduces PCI DSS audit scope while maintaining strong isolation?
A retail company runs a stateful order-management application on Compute Engine behind a global external load balancer, backed by a Cloud SQL for PostgreSQL instance. The engineering team wants to adopt a deployment process that lets them release a new application version with a backward-incompatible database schema change while guaranteeing near-instant rollback if production monitoring detects elevated error rates. Business stakeholders require that customer transactions never be lost during the release and that any rollback take effect within seconds. Which release strategy best satisfies these technical and business requirements?
A national retailer runs its customer-facing web platform on Compute Engine managed instance groups behind a global external HTTP(S) load balancer. Traffic is steady most of the year, but during a two-week holiday sale the site experiences roughly 8x normal load, with sharp, unpredictable spikes tied to flash promotions announced on social media. During last year's sale, autoscaling reacted too slowly and customers saw elevated latency and timeouts for several minutes after each promotion went live. Leadership wants the architecture to meet a 99.95% availability target and absorb sudden spikes without over-provisioning capacity year-round. Which approach best meets these performance and reliability requirements?
A financial services company must satisfy an external auditor's requirement that the security team responsible for reviewing activity logs cannot alter, delete, or disable the logs they inspect. The security analysts currently hold the project Editor role, which the auditor has flagged as a violation of separation-of-duties controls. As the cloud architect, what is the most appropriate IAM change to make?
A media startup runs an on-demand video transcoding service. Users upload source files, and the system must transcode them into multiple resolutions. Jobs are stateless, each takes 2-15 minutes, and demand is highly unpredictable—sometimes zero jobs for hours, then hundreds arriving in minutes. The CTO wants to minimize idle cost while ensuring jobs start processing within seconds of arrival and complete reliably even if the platform reclaims capacity. Which compute design best meets these business and technical requirements?