The Strategic Elements

Question 1

What are the three elements of the value proposition for IBM Cloud?

Answer 1

• Open Hybrid Cloud
• Security Leadership
• Enterprise grade

Question 2

Explain Business Framing

Answer 2

• Aligns your vision and desired business outcomes
• Confirm executive sponsor, product owner
• Select candidate app workloads

Question 3

What are the 6 stages of IBM garage client journey?

Answer 3

1. Business Framing
2. Technical Discovery
3. Design Thinking
4. Architecture
5. Minimum Viable Product build
6. Build Out

Question 4

What is the IBM garage methodology?

Answer 4

A single seamless set of proven agile practices that integrate user experience, implementation & cultural change to guide solutions from idea to enterprise scale adoption

Question 5

Explain Technical Discovery

Answer 5

• Explore technical areas of interest and nonfunctional requirements, for example applications, security, integration, and edge
• Recommend technical next steps and further discovery as needed to build proposal

Question 6

Explain Design Thinking

Answer 6

• Business and IT alignment on user experience to meet your business outcome
• Identification of risks and assumptions in your modernization approach such as data security
• A series of minimum viable products and agreement on the next MVP experiment

Question 7

Explain Architecture (IBM Cloud)

Answer 7

• Define a secure minimum viable architecture that mitigrates risk
• Architect and create an implementation roadmap for a hybrid, multicloud platform and DevOps adoption

Question 8

Explain Minimum Viable Product Build

Answer 8

• Modernize, deploy and test application on the cloud environment
• Test hypothesis using learning-driven production release against the state business outcome

Question 9

Explain Build Out

Answer 9

• Iterate across multiple minimum MVPs, refine solution until you achieve the stated business out come
• Become self-sufficient in achieving business results with the IBM Garage Method
• Scale production environment and applications

Question 10

Why use IBM Cloud for Financial Services?

Answer 10

Only public cloud platform with the framework in place to support regulatory workloads with automated security and industry leading encryption service

Question 11

What is unique about keep-your-own-key (KYOK)?

Answer 11

Only the IBM Cloud Hyper Protect Crypto Services offering features keep your own key encryption capabilities back by the highest level of security certification FIPS 140-2 Level 4- commercially available

Question 12

What is the IBM Cloud Framework for Financial Services?

Answer 12

• VMware
• Cloud Native
• Red Hat Open Shift

Question 13

Explain IBM’s secure and enterprise-grade public cloud

Answer 13

has extensive service deployment options like VMware and Red Hat OpenShift as a service

Question 14

Why use IBM Cloud for VMware Regulated Workloads?

Answer 14

• Effectively implement and govern security controls in the cloud
• Ensure auditing of all cloud administration
• Protect business critical data assets
• Prioritize meeting IT compliance for various national or industrial entities

Question 15

What do clients gain with IBM Cloud for VMware Regulated Workloads?

Answer 15

Rapid scalability

Deployment in global data centers

Disaster recovery

Backup & Security

Compliance Solutions

Question 16

The IBM Cloud for VMware Regulated Workloads uses what policy for framework?

Answer 16

IBM Cloud for Financial Services Policy

which deploys a shared-responsibility model for implementing controls

Question 17

Name the key attributes and enabling technologies of IBM Cloud for VMware Regulated Workloads

Answer 17

Isolation

Access Restrictions- IAM, Role Based Admin

Policies

Encryption - Key management (BYOK & KYOK)

Compliance

Backup and Data Recovery

Management

Question 18

Why use IBM Cloud Security Portfolio?

Answer 18

You can:

Manage Access

Protect Data

Gain Visibility-

Optimize Operations

Question 19

Explain Manage Access as it pertains to IBM Cloud Security

Answer 19

when you create secure cloud enabled solutions you must enable identity and access management so that you can authenticate and authorize a user.

when you’re using infrastructure from the cloud it’s important to manage the identities that are associated with privileged activities, such as tasks done by cloud administrators

You also must track the activities of the people who are involved in development and operations.

You must also manage user and customer access to your cloud applications

Question 20

Explain Protecting Infrastructure, Application, and Data as it pertains to IBM Security Cloud

Answer 20

In traditional data centers you must provide tenant- specific network and isolation to protect the cloud infrastructure

For application protection you must design a secure development and operation process ( SecDevOPs or DevSecOps) * process includes steps to manage vulnerabilities in VMs, container, and application code

For data protection, your solution must cover techniques to encrypt data at rest, such as files, objects, and storage
* must also include steps for how to monitor data activity and processes to verify and audit data that is outsource

Question 21

Explain Gain Visibily as it pertains to IBM Securtiy Cloud

Answer 21

You need end to end visibility and integration of security processes and tooling throughout your organization

• You can build improved security and visibility into virtual infrastructure by collecting and analyzing logs in real time across the various components and services in cloud

Question 22

What two environments can you implement security monitoring and intelligence?

Answer 22

IBM Cloud Foundry Environment - multi tenant public cloud instance

IBM Cloud Kubernetes Service Environment - multi tenant control plane and a single tenant compute node

Question 23

Explain the architecuture of Security on the cloud

Answer 23

Identity and Access
Application Security - App Scanning, Threat Protection
Data Security- Activity Monitoring
Infrastructure Security
Security Intelligence

Question 24

To secure data protection, what should you consider?

Answer 24

Data Encryption

Block and File Storage

Key Management Services (KMS)

Security Key Lifecycle Manager (SKLM)

Object Storage

Data Services

Certificate Management

Crypto Services

Question 25

What does data integrity refer to?

Answer 25

maintaining and assuring the accuracy and consistency of data over its entire lifecycle

Question 26

What does hashing data mean?

Answer 26

It allows you to detect unauthorized modifications that have been made into data

Used for data at rest ( such as rows in the table of a database) or for data in motion

Question 27

Give an example of hashing data

Answer 27

When data is stored in a database, you can generate a hash for the row of a table and store the hash value. If a row is tampered with by modifying a field in the row, a comparison with the previously generated hash value will indicate someone has tampered with the data

Question 28

In the IBM Cloud catalog, database-related services will have what?

Answer 28

built in data integrity capabilities

Question 29

In IBM Cloud Object Storage what combinations of encryption and data integrity algorithms are supported?

Answer 29

RC4-128 encryption with MD5-128 Hash for data Integrity

AES-128 encryption with MD5-128 Hash for data integrity

Question 30

IBM DB2 Hosted has what?

Answer 30

the same enterprise data integrity controls in place as IBM DB2.

It provides entity and referential integrity

Question 31

Explain IBM Security Guardium

Answer 31

provides integrated data classification capabilities and a seamless approach to finding, classifying, and protecting your most critical data.

Question 32

Why Use IBM Secure DevOps?

Answer 32

Secure Engineering

Secure Deployment and Operations

Separation of Duties

Availability and Business Continuity Management

Security Evaluation and Learning

Question 33

Why IBM Security Policy and Governance Approach

Answer 33

IBM builds security into its cloud solutions and meets strict governmental and industry security guidelines and policies

Question 34

What are IBM Cloud Paks?

Answer 34

package of one or more enterprise-grade, secure and lifecycle manage IBM Certified Container Offerings

Runs on a Red Hat Kubernetes-based OpenShift Container Platform base layer

Question 35

Why use Cloud Paks?

Answer 35

Cloud Paks are an open, faster, more reliable way to build, deploy and run applications on hybrid cloud

Help streamline development task and reduce operational expenses, help improve business agility

Cloud Paks run anywhere, are open and secure, and are consumable

Question 36

Features of Red Hat OpenShift

Answer 36

Enterprise grade- not subjet to continual community updates

Fully supported by Red Hat to run anywhere

Capable of supporting deployment on any infrastructure from mainframes to commercial public clouds

Question 37

How many cloud paks does IBM offer?

Answer 37

six

Question 38

Explain IBM Cloud Pak for Security

Answer 38

Delivers the next generation of Security threat Management platform that will enable managed security service providers (MSSPs) to scale their business

Provides an open secure platform by which users can access security data across different tools, clouds and IT environments

Question 39

Explain IBM Cloud Pak for Applications?

Answer 39

Enterprise ready contanerized software solution for modernizing existing applications and developing new cloud native apps that run on Red Hat OpenShift

Question 40

Explain IBM Cloud Pak for Data

Answer 40

lets you connect to your data, govern it, and trust it. It facilitates data scaling by streamlining legacy data sources.

Gives you the ability to lift and shift your data to IBM platform

Question 41

Explain IBM Cloud Pak for Integration

Answer 41

allows enterprises to modernize it s processes while positioning itself for future innovation.

Creates and manages APIs to help client access data in a fast and secure manner

Question 42

Explain IBM Cloud Pak for MultiCloud

Answer 42

Runs on Red Hat OpenShift

multicluster management

event management

application management

infrastructure management

Question 43

Explain IBM Cloud Pak for Automation

Answer 43

Lets you quickly scale up or down to meet fluctuating customer demand, create new products and increase productivity of remote and onsite workers

a complete and flexible set of integrated automation software that can be deployed whenever you need it, on any cloud.

Question 44

What is the difference between a value statement and value proposition

Answer 44

A value statmement desribes a benefit of a product

A value proposition is the value statement that resolves a client’s needs

Question 45

Supports regulatory workloads with automated security and encryption services

Answer 45

IBM Cloud for Financial Services

Question 46

Ensures auditing of all cloud administration

Answer 46

IBM Cloud for VMware Solutions for Financial Services