DevOps Screening TestBy mfh.officials@gmail.com / January 9, 2025 Devops and Devsecops 1 / 20 What is a "canary deployment"? Releasing software to a small subset of users before full rollout Testing code in isolated environments Deploying to all users simultaneously Using AI to automate deployments 2 / 20 What is OWASP? A DevOps monitoring tool An infrastructure provisioning tool A set of guidelines for web application security A version control system 3 / 20 What is the primary goal of DevOps? Separate development and operations Focus solely on testing automation Achieve faster delivery of high-quality software Reduce collaboration between teams 4 / 20 What is the role of monitoring in DevOps? Writing Infrastructure as Code Automating deployments Identifying and resolving issues in real-time Designing user interfaces 5 / 20 What is a common DevOps practice to ensure code quality? Isolation of development teams Manual debugging Waterfall methodology Automated testing 6 / 20 Which of the following best defines a "security as code" approach? Deploying security tools without integration Automating security configuration and policies through code Manually auditing security vulnerabilities Testing security only during the QA phase 7 / 20 What is the shift-left principle in DevSecOps? Focusing only on runtime security Prioritizing security testing at the end of the development cycle Deploying security patches post-deployment Moving security checks to the earlier stages of development 8 / 20 What is Blue-Green Deployment? A release management approach to reduce downtime A way to containerize applications A version control strategy A database optimization method 9 / 20 What does Infrastructure as Code (IaC) enable in DevOps? Container orchestration Database optimization Automated infrastructure management using code Manual server provisioning 10 / 20 Which of the following tools is commonly used for Continuous Integration (CI)? Kubernetes Jenkins Terraform Docker 11 / 20 Which tool is commonly used for static application security testing (SAST)? Grafana Ansible SonarQube Docker 12 / 20 What is the main goal of DevOps? Faster software development and delivery Isolated workflows Cost reduction only Use of only open-source tools 13 / 20 What is the primary objective of vulnerability scanning? Managing source code repositories Identifying security weaknesses in systems or code Optimizing application performance Automating infrastructure setup 14 / 20 Which tool can be used for dynamic application security testing (DAST)? Ansible Teeraform Prometheus ZAP (Zed Attack Proxy) 15 / 20 What is the purpose of Continuous Deployment (CD)? Manually releasing builds Writing code in an agile manner Automatically deploying code to production after testing Testing code 16 / 20 What does DevSecOps emphasize? Adding a separate team for security testing Separating security from the DevOps lifecycle Postponing security checks until production Integrating security into the DevOps process 17 / 20 In DevSecOps, what is a key metric for ensuring security compliance? Number of commits per day Deployment frequency Application uptime Mean Time to Remediate (MTTR) vulnerabilities 18 / 20 Which of the following is a key component of a secure CI/CD pipeline? Manual configuration management Automated vulnerability scanning Separate deployment environments Delayed integration testing 19 / 20 Which tool is widely used for infrastructure automation in DevOps? GitLab Jira jenkins Ansible 20 / 20 Which tool is used for container security? Jenkins Terraform Aqua Security Nagios Your score isThe average score is 54% 0% Restart quiz
By
/ January 9, 2025 By
/ January 9, 2025 By
/ January 9, 2025 By
/ January 9, 2025 By
/ January 9, 2025 By
/ January 9, 2025