IBM Assessment: Cloud Computing Architecture Practice Exam 2025: Latest Questions

A team is moving a customer-facing web application to the cloud. They want to avoid downtime when a compute instance fails and ensure traffic is routed only to healthy instances. Which architecture component best meets this requirement?

A company wants to store large volumes of unstructured data (images, logs, and documents) with high durability and simple HTTP-based access. Which cloud storage type is the best fit?

A security architect must ensure that cloud administrators do not have standing, always-on privileged access. Instead, access should be granted only when needed and for a limited time. Which approach best addresses this requirement?

A product owner wants faster feature releases without frequent outages. The team plans to automate builds, tests, and deployments while enforcing consistent environments. Which practice best supports this goal?

A retail application experiences unpredictable traffic spikes during marketing campaigns. The architect wants the platform to automatically add or remove compute capacity based on demand while keeping costs aligned with usage. What should be implemented?

A company adopts a microservices architecture. Services need to communicate asynchronously to reduce coupling and handle bursts of events without losing messages. Which cloud capability is most appropriate?

An auditor asks how the organization can prove who accessed sensitive cloud resources and what changes were made. Which control most directly supports this requirement?

A company must meet a regulatory requirement that sensitive data remains in a specific geographic region. Which design decision best ensures compliance?

A financial services firm wants to minimize the risk of public exposure of storage buckets and APIs. They require that critical services are reachable only from a private network and not from the public internet. Which architecture choice best meets this requirement?

A multi-tier application must remain available even if an entire availability zone becomes unreachable. The current design places the web tier and database in a single zone. Which change best improves resilience while maintaining data consistency?

A team is designing a cloud-native application and wants to minimize coupling between components while allowing independent scaling. Which architectural approach best fits this goal?

An organization wants to ensure that data stored in object storage remains protected if the storage media is physically accessed by an unauthorized party. Which control most directly addresses this requirement?

A developer needs compute capacity for a batch job that can run at any time and may take several hours, but the organization wants minimal operational overhead for provisioning servers. Which cloud service model is the best fit?

A company must meet a requirement that production systems can be restored after a regional outage with minimal data loss. Which design best supports this requirement?

A security team wants to reduce the blast radius of a compromised workload in a multi-tier cloud application. Which approach is most effective?

An application experiences intermittent latency spikes. Metrics show the spikes correlate with sudden increases in incoming requests. The architecture uses a single backend instance without a load balancer. What is the most appropriate remediation?

A company is adopting infrastructure as code (IaC) for repeatable cloud deployments. Which practice best helps ensure consistent environments and reduces configuration drift?

A regulated enterprise needs to demonstrate that only approved changes were made to cloud network configurations and that evidence is retained for audits. Which capability most directly supports this requirement?

A financial services application requires strict separation of duties: developers can deploy code, but only security administrators can modify IAM policies and encryption key settings. Which design best enforces this requirement?

A global application must serve users with low latency while maintaining a single source of truth for transactional data. The architecture currently uses one database in a single region, and users in other regions experience slow transactions. Which approach best balances latency and consistency requirements?

A team is designing a hybrid cloud application. Some services run on-premises while others run in a public cloud. The business requires that customers have a consistent experience even if a component is moved between environments. Which architectural approach BEST supports this goal?

A web application experiences unpredictable traffic spikes. The architect wants to minimize manual intervention while ensuring enough capacity during peaks and controlling cost during off-peak times. Which infrastructure capability BEST addresses this requirement?

An organization wants to reduce the blast radius of a compromised service account in its cloud environment. Which practice is MOST effective?

A company hosts a multi-tier application in the cloud. Users report intermittent timeouts, and monitoring shows backend servers are healthy but latency increases sharply during peaks. The architect suspects the load balancer is not distributing traffic effectively. Which configuration change is MOST likely to improve availability during peak load?

A regulated enterprise must ensure that all data stored in cloud object storage is encrypted and that encryption keys are controlled by the enterprise, not solely by the cloud provider. Which solution BEST meets this requirement?