You are building the Cl/CD pipeline for an application deployed to Google Kubernetes Engine (GKE) The application is deployed by using a Kubernetes Deployment, Service, and Ingress The application team asked you to deploy the application by using the blue'green deployment methodology You need to implement the rollback actions What should you do?

• A.Run the kubectl rollout undo command
• B.Delete the new container image, and delete the running Pods
• C.Update the Kubernetes Service to point to the previous Kubernetes Deployment
• D.Scale the new Kubernetes Deployment to zero

Comment: *

Name: *

Email: *

Verification: *

As part of your company's initiative to shift left on security, the infoSec team is asking all teams to implement guard rails on all the Google Kubernetes Engine (GKE) clusters to only allow the deployment of trusted and approved images You need to determine how to satisfy the InfoSec teams goal of shifting left on security.
What should you do?

• A.Deploy Falco or Twistlock on GKE to monitor for vulnerabilities on your running Pods
• B.Configure Identity and Access Management (1AM) policies to create a least privilege model on your GKE clusters
• C.Use Binary Authorization to attest images during your CI CD pipeline
• D.Enable Container Analysis in Artifact Registry, and check for common vulnerabilities and exposures (CVEs) in your container images

Comment: *

Name: *

Email: *

Verification: *

Your organization recently adopted a container-based workflow for application development. Your team develops numerous applications that are deployed continuously through an automated build pipeline to a Kubernetes cluster in the production environment. The security auditor is concerned that developers or operators could circumvent automated testing and push code changes to production without approval. What should you do to enforce approvals?

• A.Configure the build system with protected branches that require pull request approval.
• B.Use an Admission Controller to verify that incoming requests originate from approved sources.
• C.Leverage Kubernetes Role-Based Access Control (RBAC) to restrict access to only approved users.
• D.Enable binary authorization inside the Kubernetes cluster and configure the build pipeline as an attestor.

Comment: *

Name: *

Email: *

Verification: *

Your company follows Site Reliability Engineering principles. You are writing a postmortem for an incident, triggered by a software change, that severely affected users. You want to prevent severe incidents from happening in the future. What should you do?

• A.Follow up with the employees who reviewed the changes and prescribe practices they should follow in the future.
• B.Design a policy that will require on-call teams to immediately call engineers and management to discuss a plan of action if an incident occurs.
• C.Identify engineers responsible for the incident and escalate to their senior management.
• D.Ensure that test cases that catch errors of this type are run successfully before new software releases.

Comment: *

Name: *

Email: *

Verification: *

Your company follows Site Reliability Engineering practices. You are the Incident Commander for a new.
customer-impacting incident. You need to immediately assign two incident management roles to assist you in an effective incident response. What roles should you assign?
Choose 2 answers

• A.Operations Lead
• B.Engineering Lead
• C.Communications Lead
• D.Customer Impact Assessor
• E.External Customer Communications Lead

Comment: *

Name: *

Email: *

Verification: *