DevOps Cloud & DevOps Practices

Question 1

What does 'shift-left security' mean in a DevSecOps context?

Accepted Answer

Integrating security testing and reviews earlier in the development lifecycle

Answer

Moving security controls from application code to network infrastructure

Answer

Delegating security responsibilities to development teams instead of security teams

Answer

Automating security patches on the left (staging) side of the pipeline

Question 2

What is AWS CodePipeline?

Accepted Answer

A fully managed AWS CI/CD service that automates build, test, and deploy workflows

Answer

An AWS tool for defining infrastructure as code using YAML pipelines

Answer

A managed Kubernetes service for running containerized applications

Answer

An AWS service for monitoring pipeline execution metrics

Question 3

What is 'chaos engineering'?

Accepted Answer

Deliberately injecting failures into systems to test resilience and uncover weaknesses

Answer

Running disorganized deployments to test team incident response

Answer

Using random data to test application edge cases and error handling

Answer

Simulating high traffic load to test system scalability

Question 4

What is the '12-Factor App' methodology?

Accepted Answer

A methodology for building scalable, maintainable cloud-native applications across 12 principles

Answer

A checklist of 12 security requirements for cloud applications

Answer

A 12-step deployment process for containerized microservices

Answer

A framework with 12 architectural patterns for distributed systems

Question 5

What is a 'feature flag' (feature toggle) in DevOps?

Accepted Answer

A configuration switch that enables or disables features at runtime without deploying new code

Answer

A CI/CD pipeline flag that marks builds ready for production deployment

Answer

A Git branch naming convention for feature development

Answer

A Kubernetes label used to route traffic to specific Pod versions

Question 6

What is 'DevSecOps'?

Accepted Answer

The integration of security practices and tools throughout the DevOps pipeline

Answer

A team structure combining dedicated developers, security engineers, and operations staff

Answer

A compliance framework for securing DevOps toolchains

Answer

An approach to running security operations using DevOps methodologies