Google Cloud Technology Nuggets — July 16–31, 2022 Edition

Welcome to the July 16–31, 2022 edition of Google Cloud Technology Nuggets.

Professional Cloud Database Engineer Certification

The latest Professional certification that is available is the Cloud Database Engineer Certification. Check out a blog post that provides information on this certification along with the exam guide and certification learning path.

Infrastructure

A new cloud region is coming to Mexico. When the region goes live, it will be the third region in Latin America, along with Santiago, Chile, and São Paulo, Brazil. Check out the blog post for more details. Visit the global cloud infrastructure page for more information on current and upcoming regions.

Containers and GKE

GKE Autopilot now supports the Scale-Out compute class, which offers high performance x86 and Arm compute. The feature is available in Preview. Scale-out compute class is designed for workloads that are optimized for a single-thread-per-core and scale horizontally. Check out the blog post for more details.

If you are looking to run data-intensive workloads on GKE, take a look at the blog post that highlights how you can run these workloads with MariaDB SkySQL.

Security

Cloud CISO Perspectives for July 2022 is out. This month’s edition focuses on the relationship between the organization’s boardroom and its cybersecurity, vis-a-vis the digital transformation journey to the cloud. The blog post focuses on 3 possible scenarios and best practices around aligning these objectives around the company’s mission and culture. Check out the edition for more articles around Security Updates, Best Practices and more.

If you are a Managed Security Solution Provider (MSSP), you have likely seen an increased demand for your service since the pandemic. To help continue the momentum, MSSPs need to address six key challenges as highlighted in this blog post. These challenges range from lack of central visibility, increased personnel costs, round the clock operations and more. The blog post then provides a direction on how integrated secops can help address them via chronicle.security.

Local Users Password Validation feature for Cloud SQL for PostgreSQL and MySQL is now available in General Availability (GA). This feature helps you set password rules that include features like minimum characters, password complexity, minimum days for a password before it needs to be changed, etc.

Check out the blog post for more details and how it also explains the relationship between Local passwords and IAM and how you can make both of them work together.

Credential Stuffing is one of the harder to detect attacks. Check out this detailed blog post on how you can utilize Google reCAPTCHA and Cloud Armor to address a credential stuffing attack.

Databases, Analytics and Machine Learning

​​Dataflow has seen significant announcements in this period. First up, is a set of 3 features for Dataflow:

  1. Dataflow Prime : Utilize horizontal autoscaling (more machines) and vertical autoscaling (larger machines with more memory) automatically for your streaming data processing workloads.
  2. Dataflow Go: Native support for Go language.
  3. Dataflow ML : out of the box support for running PyTorch and scikit-learn models directly within the pipeline.

Check out the blog post for more details.

Google Cloud Data Catalog is getting unified into a single user interface with Dataplex. The unified experience allows you to automate data management, governance, discovery, and exploration across distributed data at scale. Check out the blog post for more details.

Finally, BigLake is now available in General Availability (GA). Check out the post for more details and how customers have been utilizing it.

The guide to databases on Google Cloud continues with Part 4. In this part, a complete CRUD example with running a Spring Boot Application on Cloud Run interfacing with Cloud Firestore. Check out the blog post for more details.

Looking to operationalize BigQuery and BQML jobs in a Vertex AI Pipeline? In a big boost to achieving that, 20+ pipeline operators for BQML have been released, which will help to automate and monitor the entire model life cycle of BQML models from training to serving.

Check out this post for more details on the operators along with a detailed guide on creating a demand forecast prediction pipeline in BQML.

No need to write your own pipelines to move data from Pub/Sub to BigQuery. A new type of Pub/Sub subscription called “BigQuery subscription” writes directly from Pub/Sub to BigQuery. Check out the blog post for more details.

Developers and Practitioners

If you store client-specific state on containers, then you would like subsequent requests from that client to be routed to the same container instance. Cloud Run recently released session affinity as a preview feature. Check out this blog post that explains in great detail what session affinity is and how Cloud Run helps enable it.

If you have used the new Google Cloud console home page, you would have noticed the Quick Access feature. The goal of this feature is to introduce shortcuts that predict your next operations and hence reduce the time it takes you to both navigate to that step via the console and eventually get the task done.

Quick Access, as the blog post indicates, is based on Active Assist, the AIOPs feature that uses machine learning to reduce the operational burden and has been used in features to identify idle resources, firewall configuration and more. This is the first personalized recommendation that Active Assist is being used for.

Let’s learn about Google Cloud

First up is a deep dive into global external HTTP(s) Load Balancer. Load balancer service is offered in multiple modes in Google Cloud: global external, regional external, and regional internal. This guide is a detailed look at global external HTTP(s) Load balancer.

Customer sensitive data is lurking across your systems and it is important that you have a process to handle, identify and mask the sensitive information. Google Cloud provides a managed service called Cloud DLP (Data Loss Prevention) that does exactly that. Check out this introduction to DLP and how it can help you.

Who can do What on Which resources? How does Google Cloud handle that? It does that via Identity and Access Management (IAM). Check out this article that helps you understand IAM and key best practices around it.

Stay in Touch

Have questions, comments, or other feedback on this newsletter? Please send Feedback.

Looking to keep a tab on new Google Cloud product announcements? We have a handy page that you should bookmark → What’s new with Google Cloud.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store