chap. 3 cloud system design

What kind of expense is the purchase of a new firewall device?

CapEx

What type of migration would support the transition of an application from an on-prem VM server to a cloud-hosted container instance if no code changes are required for the application?

Rehost

You've just deployed an update to an HR application that is widely used throughout your company. Which type of testing should you conduct to ensure your scheduling and shift planning software has not been adversely affected by the HR application update?

Regression testing

You work as a software developer and need to release a small update to an application during a set maintenance window where short periods of downtime are acceptable, and no changes will be made to the underlying infrastructure. Which deployment strategy is the best fit for this scenario?

Rolling deployment

During which incident response phase are backup systems activated?

Recovery

Which resource might you use to quickly determine how to respond to a physical security breach?

Playbook

Which auto scaling policy would be the best fit for a workload that fluctuates according to a complex pattern consistently overtime?

Trending

Which tool is the best fit to set up a complex automation workflow for software in an on-prem environment

Jenkins

Your team has decided to update the database technology used to handle your customer data. What architecture design allows you to replace one system in the application without disrupting the functionality of the rest of the application?

Loosely coupled architecture

Which auto scaling technique would be the best fit for a server cluster that needs to scale according to a complicated but predictable pattern?

schedule

Corin works in the IT department of a law firm specializing in real estate closings. The firm is already using G Suite (web-based Google apps) productivity software for office staff, and it recently acquired a company-wide license for Zoom, an online video conferencing app. The next, more audacious target is their billing software. The company has been using an antiquated program for more than 20 years—longer than most of their staff has been employed. One accountant has been with the firm for nearly 30 years and remembers when the firm first started using this billing software. She says everyone hated it even then. Corin has been asked to make a recommendation as to how to proceed with this phase of the migration. Given these conditions, what is the best approach to migrating the billing functions to the cloud?

replace

You're developing an application designed to assist an HR (human resources) team with handling employee data. The application's API must support stateless requests and requires caching to manage performance. Which API type would be the best fit for this application?

Rest

Mykel and his team recently completed a major migration of several business-critical applications to the public cloud, and they're performing some final tests before going live. While taking a short break at a nearby coffee shop, Mykel decides to remote into one of the primary servers from his personal laptop so he can make additional configuration changes. As he's completing the changes, it occurs to him that this particular server is supposed to be locked down to provide access only from his computer back at his desk. He pokes around to find out how much access he has with this user account and then returns to the office to address the problem. What kind of testing did Mykel use to identify this issue?

penetration testing

Ramona's company is planning to expand internationally through a business acquisition next year. Through this acquisition, the company hopes to attract several larger international accounts that will require higher levels of security compliance than what her company has tackled in the past. Due to this anticipated increase in security needs, Ramona has been put in charge of increasing the company's cybersecurity posture. Which audit-based framework will ensure the cybersecurity improvements of Ramona's company meet the demands of their expanding international market?

ISO/IEC 27001