50 IBM Assessment: Cloud Solutions v1 Practice Questions: Question Bank 2025

A team is designing a cloud-native application that experiences unpredictable traffic spikes. They want the platform to automatically scale without managing servers. Which compute approach best meets this requirement?

A company plans to migrate an existing application to the cloud quickly with minimal code changes. The application currently runs on virtual machines and uses a standard web server. Which migration approach is MOST appropriate?

A development team needs to decouple a web front end from back-end processing to improve reliability when traffic bursts occur. Which cloud integration pattern is the BEST fit?

A security team requires that data stored in the cloud be protected even if physical storage media is accessed by an unauthorized party. Which control BEST addresses this requirement?

A global retail company wants to improve availability and reduce latency for customers in multiple regions. Which architecture decision best supports these goals?

After migrating a database-backed application to the cloud, users report slow response times during peak hours. Monitoring shows high database CPU and connection counts. Which action is the BEST first step to improve performance while keeping code changes minimal?

A company needs to expose internal services to partners securely without giving partners access to the internal network. They also need rate limiting and centralized authentication. Which solution is MOST appropriate?

An organization must meet compliance requirements that mandate least privilege access and traceability for administrative actions. Which approach BEST satisfies these requirements?

A financial services company is building a multi-tenant SaaS solution on the cloud. They must ensure strong tenant isolation while still operating efficiently at scale. Which design is MOST appropriate?

A company is integrating cloud services with an on-premises system. Intermittent network outages cause requests to fail, and retries sometimes create duplicate transactions in the on-prem system. Which change BEST addresses this issue?

A team is designing a public cloud solution and wants to minimize lateral movement if a workload is compromised. Which network design is the best practice?

A company is migrating an application to the cloud. The application currently stores user uploads on the local file system of a single server, and the cloud deployment will use multiple instances behind a load balancer. What change is MOST important to avoid data loss and inconsistent behavior?

An architect must choose between synchronous and asynchronous integration between two cloud services. The upstream service can tolerate eventual consistency and must remain responsive during downstream outages. Which approach best fits the requirement?

A retail application experiences unpredictable traffic spikes. The team wants to avoid overprovisioning while maintaining performance. Which architecture pattern is MOST appropriate?

A company needs to integrate an on-premises ERP system with a cloud-based order service. Connectivity is sometimes unstable, and orders must not be lost. What is the BEST integration approach?

After migrating a web application to the cloud, users report intermittent login failures only when traffic is high. Logs show that some requests are routed to instances that do not recognize the user session. What is the MOST likely root cause?

A security team requires that application secrets (API keys, database passwords) are rotated regularly and never stored in source control. Which solution best meets this requirement?

An organization must meet compliance requirements that mandate full traceability of administrative actions in the cloud environment. Which capability is MOST important to enable?

A financial services application must be resilient to a full zone outage while maintaining low RPO and rapid recovery. Which design is MOST appropriate?

A company is adopting a hybrid cloud model. The security team mandates that only specific on-premises services can reach a cloud-hosted database, and the database must not be publicly accessible. Which combination best enforces this requirement?

A development team wants to ensure a cloud application behaves consistently across development, test, and production environments. Which approach best supports this goal?

A company is migrating a customer-facing web application to the cloud. They need to reduce downtime and risk during cutover. Which migration strategy best meets this requirement?

A solution architect needs to decouple an order service from an inventory service so that temporary spikes do not overload downstream systems. Which pattern is most appropriate?

A team deployed an application to the cloud and users report intermittent timeouts. Monitoring shows the application instances are healthy, but traffic distribution is uneven. Which configuration is most likely causing this?

A bank must ensure only specific microservices can call a sensitive internal API. They also need to authenticate the calling service without relying on static credentials. Which approach best meets this requirement?

An enterprise has multiple SaaS applications and wants to centralize user authentication with single sign-on and consistent access policies. Which solution is most appropriate?

A company is integrating an on-premises ERP system with a cloud-based order-processing service. The ERP cannot be modified and only supports scheduled file exports. What is the best integration approach?

A healthcare organization must keep patient data encrypted and ensure encryption keys are controlled with strict access policies and auditing. Which design best meets these requirements?

A global application uses a single shared database in one region. During peak hours, users in other regions experience high latency. The organization wants to improve read performance globally without risking conflicting writes. Which approach is most appropriate?

After migrating a legacy application to the cloud, nightly batch jobs intermittently fail when writing output files. Investigation shows multiple job instances sometimes run concurrently after retries, causing file corruption. What is the best remediation?

A team is designing a cloud-native application where background jobs may run multiple times due to retries. Which design approach best prevents duplicate side effects (for example, double-charging a customer)?

An organization is migrating an application to the cloud and wants a low-risk approach that validates networking, IAM access, and performance before moving production. What is the most appropriate migration strategy to start with?

A solution needs to decouple a web front end from a downstream order-processing service to handle traffic spikes without losing requests. Which approach best meets this requirement?

A security team wants to reduce the blast radius if a cloud API key is accidentally exposed. Which control is most effective as a best practice?

A microservices application is experiencing intermittent latency. The team needs to trace a single user request across multiple services to identify the bottleneck. Which capability should be implemented?

After migrating a workload to the cloud, users report slow performance when the application reads data from an on-premises database over a VPN. Which remediation is most appropriate?

Two systems must exchange events using different data formats (one produces JSON, the other requires XML) and apply validation and transformation rules. What is the best integration approach?

A regulated organization must ensure only approved cloud configurations are deployed (for example, encryption enabled, no public storage access) and needs evidence for audits. Which approach best satisfies this requirement?

A global application must remain available during a full regional outage while meeting strict RTO and RPO targets. Which architecture is most appropriate?

During an incident review, the team finds that access logs are incomplete and cannot prove who changed critical cloud resources. Which control best addresses this issue going forward?

A team is choosing a default data storage option for a cloud-native application. The application stores user profile data that must be frequently updated and queried by user ID with low latency. Which storage approach is MOST appropriate?

A company wants to reduce the operational effort of patching and maintaining the runtime for a small API that runs only on demand. Which cloud compute model BEST fits this requirement?

A security team requires that no public internet traffic can reach a database service. Application servers in the same cloud account must still connect to the database. Which approach BEST meets this requirement?

A company is migrating a multi-tier application to the cloud. They want to avoid downtime and ensure they can roll back quickly if issues occur. Which migration strategy is MOST appropriate?

An application uses asynchronous processing: the front-end submits jobs and a worker service processes them later. The team needs to decouple components and buffer spikes in workload. Which integration pattern BEST meets this requirement?

A microservices team reports intermittent timeouts between services after migrating to the cloud. Logs show occasional long pauses during peak traffic but no CPU saturation. Which design improvement MOST directly increases resilience to these transient failures?

A regulated workload must demonstrate that administrative actions on cloud resources are traceable to individual users and cannot be altered after the fact. Which control BEST satisfies this requirement?

A company is integrating an on-premises identity provider with cloud services. They want to avoid creating separate cloud-only user accounts and ensure consistent access control. Which approach BEST meets this requirement?

A global application must remain available even if an entire cloud region becomes unavailable. The business requires an RTO of minutes and an RPO close to zero. Which architecture BEST meets these requirements?

During a phased migration, some services run on-premises and others in the cloud. Users report that authentication succeeds, but calls from cloud services to on-premises APIs frequently fail due to IP allowlist restrictions. What is the MOST effective long-term solution?