Compare cloud compute; design Kubernetes security and CI/CD
Overview
This question evaluates a candidate's competency in cloud compute model selection, testing strategies, Kubernetes architecture and operational commands, multi-tenant data security, and CI/CD pipeline design including rollbacks and canary releases.
Salesforce
Jul 31, 2025, 12:00 AM
Software Engineer
Technical Screen
System Design
0
0
Cloud Compute Models, Testing Strategies, Kubernetes Deep Dive, Security, and CI/CD to GKE
Context
You are designing and operating services across public clouds. Compare compute models (VMs, containers, serverless) and explain when to choose each on GCP vs AWS. Then discuss testing strategies in cloud environments, deep-dive into Kubernetes (architecture and kubectl workflow), data security for a multi-tenant cluster, and design a CI/CD pipeline that deploys to GKE with rollbacks and canary releases.
Tasks
-
Compare compute models in public clouds:
- Virtual machines vs containers vs serverless.
- When to choose each on GCP vs AWS. Map to key services.
-
Testing strategies for cloud services:
- Unit, integration, load/performance, and chaos testing.
- How approaches differ for VMs, containers/Kubernetes, and serverless.
-
Kubernetes deep dive:
- Control plane vs worker nodes; core components on each.
- Walk through kubectl commands to deploy, scale, roll back, and debug a service.
-
Data security in a multi-tenant cluster:
- RBAC, network policies, secrets management, encryption in transit and at rest.
-
CI/CD pipeline for GKE:
- Build, test, scan, and deploy containerized services to GKE.
- Include rollbacks and canary releases.
Solution
Login required
Show