Google Cloud Professional Cloud DevOps Engineer — Question 189

You work for a company that manages highly sensitive user data. You are designing the Google Kubernetes Engine (GKE) infrastructure for your company, including several applications that will be deployed in development and production environments. Your design must protect data from unauthorized access from other applications, while minimizing the amount of management overhead required. What should you do?

Answer options

• A. Create one cluster for the organization with separate namespaces for each application and environment combination.
• B. Create one cluster for each application with separate namespaces for production and development environments.
• C. Create one cluster for each environment (development and production) with each application in its own namespace within each cluster.
• D. Create one cluster for the organization with separate namespaces for each application.

Correct answer: C

Explanation

The correct answer is C because creating one cluster for each environment with separate namespaces for each application ensures that the applications are isolated from one another, protecting sensitive data while simplifying management. Options A and D do not provide adequate isolation for applications, and option B increases management overhead by creating multiple clusters for each application.