# Becoming a Google Cloud DevOps Engineer: Bridging the Gap Between Development and Operations

In today's fast-paced and competitive technology landscape, the need for efficient software development and deployment practices is greater than ever. Companies are constantly seeking ways to accelerate their development cycles, improve application reliability, and ensure seamless collaboration between development and operations teams. This is where the role of a Google Devops Engineer comes into play.

### What is Google Cloud DevOps Engineer?

A Google Cloud DevOps Engineer is a skilled professional who specializes in bridging the gap between software development and IT operations on the Google Cloud Platform (GCP). They are responsible for designing, implementing, and managing the processes and tools that enable the continuos integration, continuos delivery (CI/CD), and automated infrastructure provisioning needed for efficient software development and deployment in a cloud-based environment. 

### The DevOps Mindset

Before diving into technical aspects, it's crucial to understand the DevOps mindset. DevOps is not just about tools and automation; it's a cultural shift that emphasizes collaboration, communication and shared responsibility between development and operations teams. DevOps Engineers act as facilitators of this cultural change, fostering an environment where development and operations work together seamlessly to deliver high-quality software.

### Key Responsibilities of a Google Cloud DevOps Engineer

#### 1. Automation and Infrastructure as Code (IaC)

Devops engineers automate manual and repetitive task, including infrastructure provisioning, configuration management, and application deployment. They use infrastructure as Code (IaC) tools like Google Cloud Deployment Manager or Terraform to define and provision cloud resources programmatically.

#### 2. Continuos Integration and Continuous Deployment (CI/CD)

CI/CD pipelines are the heart of DevOps. DevOps Engineer design ad maintain CI/CD pipelines using tools like Google Cloud Build, Jenkins or GitLab CI/CD. These pipelines automate the building, testing and deployment of applications, ensuring a rapid and reliable release process.

#### 3. Containerization and Orchestration

Containers. powered by Docker, are a DevOps game-changer. DevOps engineers containerize applications, making them portable and consistent across different environment. They often leverage Kubernets, GCP's managed Kubernetes service (GKE), for container orchestration and management.

#### 4. Monitoring, Logging and Alerting

DevOps Engineers set up monitoring and logging solutions using Google Cloud Monitoring and Logging. They create custom dashboard and alerts to gain insights into application and infrastructure performance, helping teams respond quickly to issues.

#### 5. Security and Compliance

Security is a top priority in DevOps. Devops Engineers work on implementing security best practices. managing access controls using Google Cloud IAM, and ensuring compliance with industry standards and regulations.

### Skill and Knowledge

To excel as a Google Cloud DevOps Engineer, you need a diverse skill set that includes:

<ul>
    <li>Proficiency in Google Cloud services and resources.</li>
    <li>Scripting and automation skills (eg. Python, Shell).</li>
    <li>Version control system (eg. Git).</li>
    <li>Containerization and Orchestration (Docker and Kubernetes).</li>
    <li>CI/CD tools and practices.</li>
    <li>Infrastructure as Code (IaC) knowledge.</li>
    <li>Cloud security and compliance expertise.</li>
    <li>Monitoring and logging skills.</li>
    <li>Problem-solving and troubleshooting abilities.</li>
</ul>

### Preparing for the Role

Becoming a Google Cloud DevOps Engineer requires a combination of education, hands-on experience and certification. Google offers a Google Cloud DevOps Engineer certification, which validates your skills and knowledge in this domain.

To prepare, consider the following steps:
<ol>
    <li><b>Learn Google Cloud:</b> Familiarize yourself with GCP services, especially those relevant to DevOps, such as Cloud Build, GKE, and Cloud Monitoring.</li>
    <li><b>Master CI/CD:</b> Understand CI/CD principles and practice building pipelines for automating software delivery.</li>
    <li><b>Containerization:</b> Gan expertise in Docker and Kubernetes for containerization and orchestration.</li>
    <li><b>Infrastructure as Code:</b> Learn how to define infrastructure using IaC tools like Terraform or Google Cloud Deployment Manager.</li>
    <li><b>Security and Compliance:</b> Study cloud security best practices and compliance standards relevant to your industry.</li>
    <li><b>Certification Preparation:</b> Enroll in the Google Cloud DevOps Engineers certification course or study relevant resources to prepare for the exam.</li>
    <li><b>Hands-on Practice:</b> Apply what you have learned through hands-on projects and real-world scenarios.</li>
</ol>

### Conclusion

The role of a Google Cloud DevOps Engineer is a critical modern software development landscape. By adopting a DevOps mindset, leveraging automation, and mastering Google Cloud tools and services, you can become a valuable asset to any organization aiming to achieve faster, more reliable software delivery on the cloud. It's journey that combines technical skills with a commitment to collaboration and continuous improvement, ultimately contributing to the success of your team and the projects you work on.

# Google Cloud DevOps Engineer Certification

This course will instruct by Awantech System Sdn. Bhd.
<p>Date of training:
<ul>
    <li>11th Oct 2023 (Day 1)</li>
    <li>12th Oct 2023 (Day 2)</li>
    <li>16th Oct 2023 (Day 3)</li>
    <li>17th Oct 2023 (Day 4)</li>
    <li>18th Oct 2023 (Day 5)</li>
    <li>19th Oct 2023 (Day 6)</li>
</ul>
<p>Time of training: 9am to 5pm
<p>Mode of trainig: Online

## Architecting with Google Cloud Design and Process

Duration 2 days, Level: Intermediate

This course feature a combination of lectures, design activities, and hands-on labs to show you how to use proven design patterns on Google Cloud to build highly reliable and efficient solutions and operate deployments that are highly available and cost-effective. This course was created for those who have already completed the Architecting with Google Compute ENgine or Architecting with Google Kubernetes Engine course.

#### What you will learn

1. Apply a tool set of questions, techniques and design considerations
2. Define application requirement and express them objectively as KPIs, SLOs and SLIs
3. Decompose application requirement to find the right microservice boundaries
4. Leverage Google Cloud developer tools to set up modern, automated deployment pipelines.
5. Choose the appropriate Google Cloud Storage services based on application requirement 
6. Architect cloud and hybrid networks
7. Implement reliable, scalable, resilient application balancing key performance metrics with cost
8. Choose the right Google Cloud deployment services for your applications
9. Secure cloud application, data and infrastructure
10. Monitor service level objectives and costs using Stackdriver tools

<strong>9 Modules - 3 Labs - 25 Classroom Activities
1. <strong>Who this course is for:
<ul>
    <li>Cloud Solutions Architects, Site Reliability Engineers, System Operations Professional, DevOps Engineer, IT Managers
    <li>Individuals using Google Cloud to create new solutions or to integrate existing systems, application environment, and infrastructure with the Google Cloud
</ul>

2. <strong>Products:
<ul>
    <li>App Engine
    <li>Cloud Deployment Manager
    <li>Cloud Function
    <li>Cloud IAM
    <li>Cloud Load Balancing
    <li>Compute Engine
    <li>Cloud Build
    <li>Container Registry
    <li>VPC Networking
</ul>

3. <strong>Pre-requisite
<ul>
    <li>Have completed Architecting with Google Compute Engine, Architecting with Google Kubernetes Engine, or have equivalent experience.
    <li>Have basic proficiency with command line tools and Linux operating system environments.
    <li>Have systems operations experience, including deploying and managing applications, either on premises or in a public cloud environment
</ul>

#### Module 01 - Defining the Service
Topics:
<ul>
    <li>Describe users in terms of roles and personas
    <li>Write qualitative requirements with user stories
    <li>Write quantitative requirements using key performance indicators (KPIs)
    <li>Evaluate KPIs using SLOs and SLIs
    <li>Determine the quality of application requirements using SMART criteria
</ul>

#### Module 02 - Microservice Design and Architecture
Topics:
<ul>
    <li>Decompose monolithic application into microservices
    <li>Recognize appropriate microservice boundaries
    <li>Architect stateful and stateless services to optimize scalability and reliability
    <li>Implement services using 12-factor best practices
    <li>Build loosely-couple services by implementing a well-designed REST architecture
    <li>Design consistent, standard RESTFUL service APIs
</ul>

#### Module 03 - DevOps Automation
Topics
<ul>
    <li>Automate service deployment using CI/CD pipelines
    <li>Leverage Cloud Source Repositories for source and version control
    <li>Automate builds with Google Cloud Build triggers
    <li>Manage container images with Google Container Registry
    <li>Create infrastructure with code using Deployment Manager and Terraform
</ul>

#### Module 04 - Choosing Storage Solutions
Topics
<ul>
    <li>Choose the appropriate Google Cloud data storage service based use case, durability, availability, scalability and cost
    <li>Storage binary data with Cloud Storage
    <li>Store relatinal data using Cloud SQL and Spanner
    <li>Store NoSQL data using Firestore and BigTable
    <li>Cache data for fast access using Memorystore
    <li>Build a data warehouse using BigQuery
</ul>

#### Module 05 - Google Cloud and Hybrid Network Architecture
Topics
<ul>
    <li>Design VPC network to optimize for cost, security and performance 
    <li>Configure global and regional load balancer to provide access to services
    <li>Leverage Cloud CDN to provide lower latency and decrease network egress
    <li>Evaluate network architecture using the Network Intelligence Center
    <li>Connect network using peering and VPNs
    <li>Create hybrid networks between Google Cloud and on-premises data centers
</ul>

#### Module 06 - Deploying Application to Google Cloud
Topics
<ul>
    <li>Choose the appropriate Google Cloud Deployment service for your applications
    <li>Configure scalable, resilient infrastructure using instance Templates and Groups
    <li>Orchestrate microservice deployments using kubernetes and GKE
    <li>Leverage App Engine for a completely automated platform as a service (PaaS)
    <li>Create serveless applications using Google Cloud Function
</ul>

#### Module 07 - Designing Reliable Systems
Topics
<ul>
    <li>Design services to meet requirements for availability, durability, and scalability
    <li>Implement fault tolerant systems by avoiding single points of failure, correlated failures and cascading failures
    <li>Avoid overload failures the circuit breaker and truncated exponential backoff design patterns.
    <li>Design resilient data storage with lazy deletion.
    <li>Analyze disaster scenarios and plan for disaster recovery using cost/risk
</ul>

#### Module 08 - Security
Topics
<ul>
    <li>Design secure systems using best-practices like separation of concerns, principles of least privilege and regular audits.
    <li>Leverage Google Cloud Security Command Center to help identify vulnerabilities
    <li>Simplify cloud governance using or organizations policies and folders
    <li>Secure people using IAM roles, Identify Aware Proxy and Identify Platform
    <li>Manage the access and authorizations of resources by machines and processes using service accounts
    <li>Secure networks with private IPs, Firewall, and Google Cloud Private access
    <li>Mitigate DDoS attacks by leveraging Cloud DNS and Cloud Armor.
</ul>

#### Module 09 - Maintenance & Monitoring
Topics:
<ul>
    <li>Manage new service versions using rolling updates, blue-green deployments and canary releases
    <li>Forecast, monitor and optimize service cost using the Google Cloud pricing calculator, billing reports and by analyzing billing data
    <li>Observe if your services are meeting their SLOs using Stackdriver Monitoring and Dashboards
    <li>Use Uptime Checks to determine service availability
    <li>Respond to service outages using Stackdriver Alerts
</ul>

## Google Cloud Fundamentals: Core Infrastructure

Duration: 1 day, Level: Beginner

Learn about and compare many of the computing and storage service available in Google Cloudm including Google App Engine, Google Compute Engine, Google Kubernetes Engine, Google Cloud Storage, Google Cloud SQL, and BigQuery. You learn about important resource and policy management tools, such as the Google Cloud Resource Manager hierarchy and Googe Cloud Identity and Access management.

#### What you will learn

1. Identify the purpose and value of Google Cloud products and services.
2. Choose among and use application deployment environments on Google Cloud: App Engine, Google Kubernetes Engine, and Compute Engine.
3. Choose among and use Google Cloud Storage options: Cloud Storage, Cloud SQL, Cloud Bigtable, and Firestore.
4. Interact with google Cloud Services.
5. Describe ways in which customers have used Google Cloud.

<Strong>Overview: 9 modules * TBD Videos * 6 Labs
1. <strong>Who this course for:
<ul>
    <li>Individuals planning to deploy applications and create application environments on Google Cloud
    <li>Systems operations professionals, Solution Architect getting started with Google Cloud and Developers
    <li>Executives and business decision makers evaluating the potential of Google Cloud to address their business needs.
</ul>
2. <strong>Products
<ul>
    <li>Google Compute Engine
    <li>Google Cloud Storage
    <li>Google Cloud Networking
    <li>Google Kubernetes Engine
    <li>App Engine
    <li>Cloud Run
    <li>Cloud Function
</ul>
3. <strong>Pre-requisite
<li>Familiarity with application development, system operations, Linux operating systems is helpful in understanding the technologies covered.
4. <strong>Not Covered
<li>BigQuery (Covered in other courses)
<li>Borg and Colussus (Out of scope for this course)

#### Module 01 - Introduction Google Cloud
Objective:
<ul>
    <li>Identify the advantages of Google Cloud
    <li>Define the components of Google's network infrastructure, including: Points of presence, data centers, regions, and zones.
    <li>Classify the difference between infrastructure-as-a-Service (IaaS) and platform-as-a-service(PaaS)
</ul>
Activities: Quiz

#### Module 02 - Resources and Access in the Cloud
Objective:
<ul>
    <li>Identify the purpose of projects on Google Cloud
    <li>Define the purpose of and use cases for identity and Access Management 
    <li>List the methods of interacting with Google Cloud
</ul>
Activities: Quiz, (Lab) Getting Started with Cloud Marketplace.

#### Module 03 - Virtual Machines and Networks in the Cloud
Objectives:
<ul>
    <li>identify the purpose of and use cases for Google Compute Engine
    <li>Define the basics of networking in Google Cloud
</ul>
Activities: Quiz, (Lab) Getting started with VPC Networking

#### Module 04 - Storage in the Cloud
Objectives:
<ul>
    <li>Classify the purpose of and use cases for Cloud Storage, and Database option available in Google Cloud
    <li>Distiguish between Google Cloud's storage options.
</ul>
Activities: Quiz, (Lab) Getting Started with Cloud Storage and Cloud SQL

#### Module 05 - Containers in the Cloud
Objectives:
<ul>
    <li>Define the concept of a container and identify uses for containers.
    <li>Identify the purpose of and use cases for Google Kubernetes Engine and kubernetes.
</ul>
Activities: Quiz, (Lab) Getting Started with GKE

#### Module 06 - Application in the Cloud
Objectives:
<ul>
    <li>Identify the purpose and use cases for Google App Engine
    <li>Contrast the App Engine Standard environment with the App Engine Flexible environment
    <li>Identify the purpose of and uses cases for Google Cloud Endpoints
    <li>Identify the purpose and use cases for Cloud Run
</ul>

#### Module 07 - Developing and Deploying in the Cloud
Objectives:
<ul>
    <li>Describe how Cloud Source Repositories and Cloud Functions can support application development on Google Cloud.
    <li>Explain how template-based creation and management of resources leverages a template to produce efficient app deployment and management
</ul>
Activities: (Lab) Automating Deployment of Infrastructure using Terraform

#### Module 08 - Logging and Monitoring in the Cloud
Objectives:
<ul>
    <li>Define SLIs, SLOs, and SLAs
    <li>Identify the purpose of integrated monitoring alerting and debugging
</ul>
Activities: Quiz, Course Feedback

##### Module 09 - Course Review and Summary
Objectives:
<ul>
    <li>Module 1-8 Review
    <li>Additional Learning Path


# Architecting with Google Cloud: Design & Process

## Design Workbook

## 00 Introduction
Instructor: Mr. Muhammad Adam Kane

- Learning Objectives
<ol>
    <li>Define application requirements and express as KPIs, SLOs and SLIs
    <li>Build microservice applications.
    <li>Choose appropriate Google Cloud storage and deployment services.
    <li>Architect cloud and hybrid networks
    <li>Secure cloud applications, data and infrastructure
    <li>Monitoring service levels and costs using Google Cloud Tools
</ol>

This course is about architecting, design and process. A cloud architect's job is to determine which cloud services to use in order to most effectively implement the application and services they are building. This is not an easy job.

## 08 Security 
#### 8.01 Security Concepts
- Google CLoud security is a shared responsibility between you and Google
1. Transparency: 
2. Separation of duties:
- Security is implemented in layers:
- Principle of least privilege:
- Separation of duties: 
- Regularly audit the Google Cloud Logs
- Google Cloud meets many third-party
- Security Command Center provides access to organizational and project security configuration

#### 8.02 Securing People
- To grant people access to your projects, add them as members and assign them one or more roles
- Use Identity and Access Management policies to secure environments and manage resources
- Identity-Aware Proxy simplifies authorization to Google Cloud applications and VMs
- Identity Platform provides authentication as a service

#### 8.03 Securing Machine Access
- Service accounts can be used for machine or application identities
- Can use service account keys to configure the CLI

#### 8.04 Network Security
- Remove external IPs to prevent access to machines outside their network
- Private access allows access to Google Cloud Services using an internal address
- Configure firewall rules to allow access to VMs
- Control access to APIs using Cloud Endpoints
- Restrict access to your services to TLS only
- Leverage Google Cloud network services for DDoS protection
- Use Google Cloud Armour to create network security policies

#### 8.05 Encryption
- Google Cloud provides server-side encryption of data at rest by default
- For Compliance reasons, you may need to manage your own keys
- Customer-supplied encryption keys are created in your environment and provided to Google Cloud
- The Data Loss Prevention API can be used to protect sensitive data by finding it and redacting it

## 09 Maintenance and Monitoring
#### 9.01 Managing Versions
- In a microservice architecture, be careful not to break clients when services services are updated
- Rolling updates allow you to deploy new versions with no downtime
- Use a blue/green deployment when you don't want multiple versions of service running simultaneously
- Canary releases can be used prior to a rolling update to reduce the risk

#### 9.02 Cost Planning
- Capacity planning is a continuous, iterative cycle
<ol>
    <li>Forecast: Est capacity needed monitor repeat.
    <li>Allocate: Determine resources req to meet forecasted capacity.
    <li>Approve: Cost est vs. risks and rewards.
    <li>Deploy: Monitor to see how accurate your forecast where. 
</ol>

- Optimizing disk cost: DONT OVER-ALLOCATE DISK SPACE.
- To optimize network costs, keep machines close to your data. 
- GKE usage metering can prevent over-provisioning Kubernetes clusters
- Compare the costs of different storage alternatives before decide which one to use
- Consider alternative services to save cost rather than allocating more resources
- Use the Google Cloud Pricing Calculator to est costs
- Billing reports provide detailed cost breakdowns
- For advanced cost analysis, export billing data to BigQuery
- Visualize spend with Google Data Studio
- Set budgets and alerts to keep your team aware of how much they are spending

#### 9.03 Monitoring Dashboards
- Google Cloud unifies the tools you need to monitor your service SLOs and SLAs
- Monitoring dashboards monitoring your services
- Example charts in a Monitoring dashboard
- To help you get started, Cloud Monitoring creates default 





# Google Cloud Fundamentals: Core Infrastructure

## Module 01 - Introducing Google Cloud
1. An overview of Cloud Computing
2. IaaS and Paas
3. The Google Cloud Network
4. Environmental impact
5. Security 
6. Open APIs and open source
7. Pricing and billing

## Module 02 - Resources and Access in the Cloud
1. Google Cloud resource hierarchy
2. Identity and Access Management (IAM)
3. IAM roles
4. Service accounts
5. Cloud Identity
6. Interacting with Google Cloud

### Google Cloud Resource Hierarchy
#### Resource are hierarchy
1. Folder > Projects > Resources
2. Resource hierarchy determines policies
3. Projects are the basis for using Cloud services
4. Project attributes vary in uniqueness and immutability
5. 

### Interacting with Google Cloud
1. Google Cloud Console
2. Cloud SDK and Cloud Shell
3. APIs
4. Google Cloud App

Google Cloud Console provides web-based interaction
- 

Cloud SDk is a collection of command line tools
- 

Cloud Shell provides command line access to resources
- 

APIs allow code to control your Cloud resources 
- 

Manage your resources with the Google Cloud App
- 

## Module 03 - Virtual Machine and Networks in the Cloud
### Virtual Machines and Networks in the Cloud
1. Virtual Private Cloud networking
- 
2. Compute Engine
- Compute engine let users create and run virtual machines on Google infrastructure
- Each VM contains the power and functionality of a full-fledged operating system
- C
3. Scaling virtual machines
- Cloud Marketplace
        <li> Sustained-use
        <li> Committed-use
        <li> Preemptible & Spot VMs
- Computer Engine 
4. Important VPC compatibilities
- VPCs do not require a router to be provisioned
- VPCs also do not require a firewall to be provisioned
- VPC peering and sharing allow projects to communicate 
5. Cloud Load Balancing
- Virtual Machines and Networks in the Cloud
- Load balancing distributes traffic across instances
- Cloud load balancing
    <li>Provides single as well as cross-region load balancing including automatic multi region failover
    <li>No "pre-warming" is required for anticipated spikes in traffic
- There are several load balancing options
6. Cloud Domain Name Service
7. Cloud Content Delivery Network
- Lower Network Latency
- Origins of content will experience reduced load
- save money
- enabled with a single checkbox
8. Correcting Network to Google VPS
- Google VPNs can connect to other networks
    <li>
- IPsec VPN creates dynamic connections
    <li> Creates a VPN "tunnel" connection
    <li> Uses Cloud Router to make the connection dynamic
    <li> 
- Direct peering routes traffic through a Google PoP
    <li> Puts a router in the same public data center as a Google point 
- Carrier peering allows access to Google Workspace
    <li> Gives direct access from an on-premises
- Dedicated Interconnect is a direct connection to Google
    <li> Good solution for getting the highest uptimes
    <li> Allows
- Partner Interconnect links your on-prem with your VPC
    <li> Provides connectivity between an on-premises network and a VPC network through a supported service provider

## Module 04 - Storage in the Cloud

### Comparing Storage Options
1. Cloud Storage
2. Cloud Bigtable 

## Module 06 - Application in the cloud

1. Cloud Run
#### Cloud Run is managed serverless computing
 - Cloud a managed compute platform that can run stateless containers
 - Serverless removing the need for infrastructure management
 - Built on Knative, an open API and runtime environment built on Kubernetes
 - Can automatically scale up and down from zero almost instantaneously charging only for the resources used
#### Google Cloud Run Workflow is a three-step process
 - write your code > Build and package > Deploy to Cloud Run
#### You are only charged when your container handles requests
 - Use google cloud calculator to check how much it costs
#### Integrated cloud functions handle application events
 - Integrated function > compute > 1. Convert the file

2. Cloud Functions