Google Cloud – EHR Healthcare Case Study

Google Cloud – EHR Healthcare Case Study

EHR Healthcare is a leading provider of electronic health record software to the medical industry. EHR Healthcare provides its software as a service to multi-national medical offices, hospitals, and insurance providers.

📋 Exam Relevance (2025-2026): EHR Healthcare remains one of the four active case studies on the Google Cloud Professional Cloud Architect (PCA) exam. The case study focuses on healthcare workload migration, HIPAA compliance, hybrid connectivity, container orchestration, and centralized observability. Key service updates include GKE Autopilot (recommended for containerized workloads), Cloud Deployment Manager deprecation (March 2026, replaced by Terraform/Infrastructure Manager), and GKE Enterprise (formerly Anthos) for multi-cluster management.

Executive statement

Our on-premises strategy has worked for years but has required a major investment of time and money in training our team on distinctly different systems, managing similar but separate environments, and responding to outages. Many of these outages have been a result of misconfigured systems, inadequate capacity to manage spikes in traffic, and inconsistent monitoring practices. We want to use Google Cloud to leverage a scalable, resilient platform that can span multiple environments seamlessly and provide a consistent and stable user experience that positions us for future growth.

EHR Healthcare wants to move to Google Cloud to expand, build scalable and highly available applications. It also wants to leverage automation and IaaC to provide consistency across environments and reduce provisioning errors.

Solution Concept

Due to rapid changes in the healthcare and insurance industry, EHR Healthcare’s business has been growing exponentially year over year. They need to be able to scale their environment, adapt their disaster recovery plan, and roll out new continuous deployment capabilities to update their software at a fast pace. Google Cloud has been chosen to replace its current colocation facilities.

EHR wants to build a scalable, Highly Available, Disaster Recovery setup and introduce Continuous Integration and Deployment in their setup.

Existing Technical Environment

EHR’s software is currently hosted in multiple colocation facilities. The lease on one of the data centers is about to expire.
Customer-facing applications are web-based, and many have recently been containerized to run on a group of Kubernetes clusters. Data is stored in a mixture of relational and NoSQL databases (MySQL, MS SQL Server, Redis, and MongoDB).
EHR is hosting several legacy file- and API-based integrations with insurance providers on-premises. These systems are scheduled to be replaced over the next several years. There is no plan to upgrade or move these systems at the current time.
Users are managed via Microsoft Active Directory. Monitoring is currently being done via various open-source tools. Alerts are sent via email and are often ignored.

  • As the lease of one of the data centers is about to expire, time is critical
  • Some web applications are containerized and have SQL and NoSQL databases and can be moved
  • Some of the systems are legacy and would be replaced and need not be migrated
  • Team has multiple monitoring tools and might need consolidation

Business requirements

On-board new insurance providers as quickly as possible.

Provide a minimum 99.9% availability for all customer-facing systems.

  • Availability can be increased by hosting applications across multiple zones and using managed services which span multiple AZs
  • GKE regional clusters with Autopilot mode provide built-in high availability across zones with automated node management

Provide centralized visibility and proactive action on system performance and usage.

  • Google Cloud Observability (Cloud Monitoring + Cloud Logging + Cloud Trace) provides a unified platform for centralized visibility, alerting, and proactive action
  • Application Monitoring (launched 2025) automatically labels and correlates telemetry for registered applications
  • Cloud Logging can be used for log monitoring, analysis, and alerting

Increase ability to provide insights into healthcare trends.

  • Data can be pushed and analyzed using BigQuery (now a unified AI-ready data platform) and insights visualized using Data Studio
  • BigQuery ML enables building predictive ML models directly within BigQuery for healthcare trend analysis

Reduce latency to all customers.

  • Performance can be improved using Global Load Balancer to expose the applications
  • Applications can also be hosted across regions for low latency access
  • Cloud CDN or Media CDN can further reduce latency for static content delivery

Maintain regulatory compliance.

  • Regulatory compliance (HIPAA, HITRUST) can be maintained using data localization, data retention policies, as well as security measures
  • Assured Workloads helps configure compliant environments with guardrails
  • VPC Service Controls provides data exfiltration protection for sensitive healthcare data
  • Cloud Healthcare API provides HIPAA-compliant FHIR, HL7v2, and DICOM data management

Decrease infrastructure administration costs.

  • Infrastructure administration costs can be reduced using automation with Terraform or Infrastructure Manager (Google’s managed Terraform service)
  • Note: Cloud Deployment Manager reached End of Life on March 31, 2026. Use Terraform or Infrastructure Manager for all new IaC deployments

Make predictions and generate reports on industry trends based on provider data.

  • Data can be pushed and analyzed using BigQuery with built-in ML capabilities (BigQuery ML) for predictions
  • Vertex AI can be used for advanced ML model training on healthcare data

Technical requirements

Maintain legacy interfaces to insurance providers with connectivity to both on-premises systems and cloud providers.

  • Hybrid connectivity can be established using Cloud VPN, Dedicated Interconnect, or Partner Interconnect
  • Cross-Cloud Interconnect enables private connectivity to other cloud providers (AWS, Azure) if needed
  • Network Connectivity Center provides centralized hub-and-spoke network management for multi-cloud and hybrid environments

Provide a consistent way to manage customer-facing applications that are container-based.

  • Container-based applications can be deployed on GKE (Autopilot mode recommended for reduced operational overhead) or Cloud Run for serverless containers
  • GKE Enterprise (formerly Anthos) enables consistent multi-cluster management across environments with fleet-level policies
  • Cloud Deploy provides managed continuous delivery pipelines for GKE and Cloud Run

Provide a secure and high-performance connection between on-premises systems and Google Cloud.

  • Cloud VPN (HA VPN), Dedicated Interconnect, or Partner Interconnect connections can be established between on-premises and Google Cloud
  • Dedicated Interconnect provides 10/100 Gbps connections with 99.99% SLA when configured with recommended topology

Provide consistent logging, log retention, monitoring, and alerting capabilities.

  • Cloud Monitoring and Cloud Logging (part of Google Cloud Observability) provide a single pane of glass for monitoring, logging, and alerting
  • Managed Service for Prometheus enables Kubernetes-native monitoring with PromQL
  • OpenTelemetry Protocol (OTLP) support (2025) enables standardized telemetry collection

Maintain and manage multiple container-based environments.

  • Use Terraform or Infrastructure Manager to provide consistent implementations across environments
  • GKE Enterprise fleet management enables centralized policy and configuration across multiple GKE clusters
  • Cloud Service Mesh (replaced Anthos Service Mesh, GA June 2024) provides traffic management, security, and observability across microservices

Dynamically scale and provision new environments.

  • GKE Autopilot automatically provisions and scales nodes based on workload demands (recommended mode for new clusters)
  • GKE Standard clusters can use Cluster Autoscaler and HPA/VPA for deployments
  • Cloud Run provides automatic scaling from zero to thousands of instances

Create interfaces to ingest and process data from new providers.

  • Cloud Healthcare API provides FHIR R4, HL7v2, and DICOM interfaces for healthcare data ingestion and exchange
  • Pub/Sub enables real-time streaming data ingestion from multiple providers
  • Dataflow provides serverless stream and batch data processing pipelines

Key Google Cloud Services for EHR Healthcare

Requirement Google Cloud Service
Container Orchestration GKE (Autopilot mode), Cloud Run
Multi-cluster Management GKE Enterprise (fleet management)
Hybrid Connectivity Cloud VPN (HA), Dedicated/Partner Interconnect
Infrastructure as Code Terraform, Infrastructure Manager
Observability Cloud Monitoring, Cloud Logging, Cloud Trace
Data Analytics BigQuery, Data Studio, BigQuery ML
Healthcare Data Cloud Healthcare API (FHIR, HL7v2, DICOM)
Service Mesh Cloud Service Mesh
CI/CD Cloud Build, Cloud Deploy
Compliance Assured Workloads, VPC Service Controls
Relational Databases Cloud SQL (MySQL, SQL Server), AlloyDB
NoSQL Databases Memorystore (Redis), MongoDB Atlas on GCP
Identity Management Cloud Identity, Google Cloud Directory Sync (for AD)

GCP Certification Exam Practice Questions

  • Questions are collected from Internet and the answers are marked as per my knowledge and understanding (which might differ with yours).
  • GCP services are updated everyday and both the answers and questions might be outdated soon, so research accordingly.
  • GCP exam questions are not updated to keep up the pace with GCP updates, so even if the underlying feature has changed the question might not be updated
  • Open to further feedback, discussion and correction.
  1. For this question, refer to the EHR Healthcare case study. In the past, configuration errors put IP addresses on backend servers that should not have been accessible from the internet. You need to ensure that no one can put external IP addresses on backend Compute Engine instances and that external IP addresses can only be configured on the front end Compute Engine instances. What should you do?
    1. Create an organizational policy with a constraint to allow external IP addresses on the front end Compute Engine instances
    2. Revoke the compute.networkadmin role from all users in the project with front end instances
    3. Create an Identity and Access Management (IAM) policy that maps the IT staff to the compute.networkadmin role for the organization
    4. Create a custom Identity and Access Management (IAM) role named GCE_FRONTEND with the compute.addresses.create permission

    Explanation: The constraints/compute.vmExternalIpAccess organization policy constraint controls which VM instances can have external IP addresses. By configuring this constraint at the organization or project level and specifying only the front-end instances, you prevent backend instances from being assigned external IPs while allowing them on designated front-end instances.

  2. For this question, refer to the EHR Healthcare case study. EHR Healthcare needs to ensure consistent environments across development, staging, and production while reducing provisioning errors. Their infrastructure team currently uses manual processes. What should you recommend?
    1. Use Cloud Console to manually configure all environments and document the steps
    2. Create custom scripts using gcloud CLI to provision resources
    3. Use Terraform with Infrastructure Manager to define infrastructure as code and automate deployments across all environments
    4. Use Cloud Deployment Manager templates to provision all environments

    Explanation: Terraform with Infrastructure Manager (Google’s managed Terraform service) provides a declarative, version-controlled approach to infrastructure provisioning. Cloud Deployment Manager was deprecated and reached End of Life on March 31, 2026. Infrastructure Manager enables plan/apply workflows with built-in IAM, logging, and governance.

  3. For this question, refer to the EHR Healthcare case study. EHR Healthcare wants centralized visibility and proactive alerting for their containerized applications running on GKE. They want to consolidate their current fragmented monitoring tools. What should you recommend?
    1. Deploy Prometheus and Grafana on each GKE cluster independently
    2. Use Google Cloud Observability with Cloud Monitoring, Cloud Logging, and Managed Service for Prometheus for unified observability across all clusters
    3. Use a third-party monitoring solution deployed in a separate project
    4. Configure email alerts from each application individually

    Explanation: Google Cloud Observability (Cloud Monitoring + Cloud Logging + Cloud Trace + Managed Service for Prometheus) provides a unified, fully managed observability platform. Managed Service for Prometheus allows teams familiar with Prometheus to continue using PromQL while benefiting from global, managed storage and querying.

  4. For this question, refer to the EHR Healthcare case study. EHR Healthcare needs to manage multiple containerized environments consistently while ensuring security best practices. They want to reduce the operational overhead of managing Kubernetes clusters. What is the recommended approach?
    1. Deploy all workloads on Compute Engine instances with Docker
    2. Use GKE Standard mode with manual node pool management in each environment
    3. Use GKE Autopilot mode with GKE Enterprise fleet management for centralized policy and configuration across environments
    4. Deploy each application as a separate Cloud Run service without orchestration

    Explanation: GKE Autopilot mode provides a fully managed Kubernetes experience where Google manages nodes, scaling, and security hardening. GKE Enterprise fleet management enables centralized governance with fleet-level policies, Config Sync for GitOps, and Policy Controller for guardrails across multiple clusters and environments.

  5. For this question, refer to the EHR Healthcare case study. EHR Healthcare needs to maintain connectivity between their legacy on-premises insurance provider integrations and their new Google Cloud environment with high bandwidth and low latency. What should you recommend?
    1. Set up a standard VPN tunnel between on-premises and Google Cloud
    2. Use Dedicated Interconnect with redundant connections for high-bandwidth, low-latency, SLA-backed connectivity
    3. Use public internet with SSL/TLS encryption for all communications
    4. Migrate all legacy systems to Google Cloud immediately

    Explanation: Dedicated Interconnect provides 10/100 Gbps private connections between on-premises networks and Google Cloud with up to 99.99% SLA when configured with recommended redundant topology. The case study specifies legacy systems cannot be migrated immediately and require high-performance connectivity.

EHR Healthcare References

Google Cloud – TerramEarth Case Study

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500 dealers and service centers in 100 countries. Their mission is to build products that make their customers more productive.

Key points here are 500 dealers and service centers are spread across the world and they want to make their customers more productive.

Solution Concept

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, and uploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes of data per day

Key points here are TerramEarth has 2 million vehicles. Only critical data is transferred in real-time while the rest of the data is uploaded in bulk daily.

Executive Statement

Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes. After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud.

Key point here is the company wants to improve further in operations, customer experience, and partner ecosystem by allowing them to reuse the data.

Existing Technical Environment

TerramEarth’s vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private data centers have multiple network interconnects configured to Google Cloud.
The web frontend for dealers and customers is running in Google Cloud and allows access to stock management and analytics.

Key point here is the company is hosting its infrastructure in Google Cloud and private data centers. GCP has web frontend and vehicle data aggregation & analysis. Data is sent to private data centers.

Business Requirements

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

  • ⚠️ Note: Cloud IoT Core was shut down on August 16, 2023. For IoT device connectivity, Google Cloud now recommends a Pub/Sub-based architecture with a standalone MQTT broker (e.g., EMQX, HiveMQ, or ClearBlade IoT Core) for device management and ingestion. The downstream pipeline (Pub/Sub → Dataflow → BigQuery) remains the same.
  • A Pub/Sub-based device messaging architecture with a third-party MQTT broker can provide secure device connectivity, management, and data ingestion from globally dispersed vehicles.
  • Existing legacy inventory and logistics management systems running in the private data centers can be migrated to Google Cloud.
  • Existing data can be migrated one time using Transfer Appliance.

Decrease cloud operational costs and adapt to seasonality.

    • Google Cloud provides configuring elasticity and scalability for resources based on the demand.

Increase speed and reliability of development workflow.

    • Google Cloud CI/CD tools like Cloud Build and Cloud Deploy can be used to increase the speed and reliability of the deployments. Cloud Deploy is a fully managed continuous delivery service for GKE and Cloud Run.

Allow remote developers to be productive without compromising code or data security.

  • Cloud Run functions (formerly Cloud Functions) supports function-to-function authentication for secure internal communication.

Create a flexible and scalable platform for developers to create custom API services for dealers and partners.

  • Google Cloud provides multiple fully managed serverless and scalable application hosting solutions like Cloud Run and Cloud Run functions (formerly Cloud Functions). Cloud Run now supports GPU workloads, worker pools, and deploying via Compose files.
  • Managed Instance group with Compute Engines and GKE cluster with scaling can also be used to provide scalable, highly available compute services.

Technical Requirements

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloud without disrupting operations.

    • Google Cloud API Gateway & Cloud Endpoints can be used to provide an abstraction layer to expose the data externally over a variety of backends. Cloud Endpoints now supports OpenAPI 3.0 specifications.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalable environments.

Google Cloud CI/CD - Continuous Integration Continuous Deployment

    • Google Cloud provides DevOps tools like Cloud Build and Cloud Deploy (fully managed continuous delivery) to provide CI/CD features. Spinnaker remains supported as an open-source option for multi-cloud deployments.
    • ⚠️ Update: Cloud Source Repositories reached end-of-sale on June 17, 2024 and is no longer available to new customers. Secure Source Manager is the recommended replacement — a regionally deployed, single-tenant managed source code repository on Google Cloud.
    • Cloud Build is a fully-managed, serverless service that executes builds on Google Cloud’s infrastructure.
    • ⚠️ Update: Container Registry was shut down on March 18, 2025. Artifact Registry is the required replacement, supporting both container images and non-container artifacts (Maven, npm, Python, etc.).
    • Artifact Registry is the single artifact management service for container images, language packages, and OS packages on Google Cloud.
    • Cloud Deploy is a fully managed continuous delivery service that automates delivery to GKE and Cloud Run with promotion sequences, deploy policies, canary deployments, and automated rollbacks.

Allow developers to run experiments without compromising security and governance requirements

    • Google Cloud Deploy supports canary deployments and automated rollbacks. Cloud Run provides traffic splitting for A/B testing and gradual rollouts.

Create a self-service portal for internal and partner developers to create new projects, request resources for data analytics jobs, and centrally manage access to the API endpoints.

Use cloud-native solutions for keys and secrets management and optimize for identity-based access

    • Google Cloud supports Cloud Key Management Service (Cloud KMS) and Secret Manager for managing secrets and key management. Cloud KMS now supports quantum-safe key encapsulation mechanisms, and Secret Manager supports integrated secret synchronization with GKE clusters.

Improve and standardize tools necessary for application and network monitoring and troubleshooting.

    • Google Cloud provides Cloud Operations Suite (Google Cloud Observability) which includes Cloud Monitoring and Logging to cover both on-premises and Cloud resources.
    • Cloud Monitoring collects measurements of key aspects of the service and of the Google Cloud resources used. It now integrates with App Hub for Application Monitoring dashboards with trace span visibility.
    • Cloud Monitoring Uptime check is a request sent to a publicly accessible IP address on a resource to see whether it responds.
    • Cloud Logging is a service for storing, viewing, and interacting with logs.
    • Error Reporting aggregates and displays errors produced in the running cloud services.
    • Cloud Profiler helps with continuous CPU, heap, and other parameters profiling to improve performance and reduce costs.
    • Cloud Trace is a distributed tracing system that collects latency data from the applications and displays it in the Google Cloud Console.
    • ⚠️ Update: Cloud Debugger was shut down on May 31, 2023. For production debugging capabilities, use Snapshot Debugger (open-source) or Cloud Logging and Cloud Trace for troubleshooting.

Reference Cellular Upload Architecture

Batch Upload Replacement Architecture

Key Updates for Certification Exam (2024-2026)

The TerramEarth case study remains part of the Professional Cloud Architect certification exam. When answering exam questions related to this case study, keep the following service changes in mind:

  • IoT Device Connectivity: Cloud IoT Core is no longer available. Use Pub/Sub with a standalone MQTT broker for device telemetry ingestion.
  • CI/CD Pipeline: Cloud Deploy is the preferred managed CD solution. Container Registry has been replaced by Artifact Registry. Cloud Source Repositories is replaced by Secure Source Manager.
  • Serverless: Cloud Functions is now Cloud Run functions, unified under the Cloud Run platform.
  • Observability: Cloud Debugger is no longer available. Use Cloud Trace, Cloud Logging, and Snapshot Debugger instead.
  • Security: Cloud KMS now supports quantum-safe encryption. Secret Manager supports GKE secret synchronization.

Reference

Google Cloud – Mountkirk Games Case Study

Google Cloud – Mountkirk Games Case Study

Mountkirk Games makes online, session-based, multiplayer games for mobile platforms. They have recently started expanding to other platforms after successfully migrating their on-premises environments to Google Cloud. Their most recent endeavor is to create a retro-style first-person shooter (FPS) game that allows hundreds of simultaneous players to join a geo-specific digital arena from multiple platforms and locations. A real-time digital banner will display a global leaderboard of all the top players across every active arena.

Solution Concept

Mountkirk Games is building a new multiplayer game that they expect to be very popular. They plan to deploy the game’s backend on Google Kubernetes Engine so they can scale rapidly and use Google’s global load balancer to route players to the closest regional game arenas. In order to keep the global leader board in sync, they plan to use a multi-region Spanner cluster.

So the key here is the company wants to deploy the new game to Google Kubernetes Engine exposed globally using a Global Load Balancer and configured to scale rapidly and bring it closer to the users. Backend DB would be managed using a multi-region Cloud Spanner cluster.

Executive Statement

Our last game was the first time we used Google Cloud, and it was a tremendous success. We were able to analyze player behavior and game telemetry in ways that we never could before. This success allowed us to bet on a full migration to the cloud and to start building all-new games using cloud-native design principles. Our new game is our most ambitious to date and will open up doors for us to support more gaming platforms beyond mobile. Latency is our top priority, although cost management is the next most important challenge. As with our first cloud-based game, we have grown to expect the cloud to enable advanced analytics capabilities so we can rapidly iterate on our deployments of bug fixes and new functionality.

So the key points here are the company has moved to Google Cloud with great success and wants to build new games in the cloud. Key priorities are high performance, low latency, cost, advanced analytics, quick deployment, and time-to-market cycles.

Business Requirements

Support multiple gaming platforms.

Support multiple regions.

Support rapid iteration of game features.

  • Can be handled using Terraform with Infrastructure Manager (IaC) to automate infrastructure provisioning
  • Cloud Build + Cloud Deploy can be used for rapid continuous integration and deployment to GKE

Minimize latency

  • can be reduced using a Global HTTP load balancer, which would route the user to the closest region
  • using multi-regional resources like Cloud Spanner would also help reduce latency
  • using Agones with GKE for dedicated game server hosting would optimize player-to-server latency

Optimize for dynamic scaling

  • can be done using GKE Cluster Autoscaler and Horizontal Pod Autoscaling to dynamically scale the nodes and applications as per the demand
  • GKE Autopilot can simplify cluster management with automatic node provisioning and scaling
  • Cloud Spanner can be scaled dynamically with autoscaling (available since 2023)
  • Agones Fleet Autoscaler can dynamically scale game server fleets based on player demand

Use managed services and pooled resources.

  • Using GKE (Standard or Autopilot mode), with Global Load Balancer for computing and Cloud Spanner would help cover the application stack using managed services
  • Agones on GKE Autopilot eliminates the need to manage Kubernetes node pools for game servers

Minimize costs.

  • Using minimal resources and enabling auto-scaling as per the demand would help minimize costs
  • GKE Autopilot with Agones helps minimize costs by automatically right-sizing resources
  • Cloud Spanner Standard edition provides cost-effective option for development and testing environments

Existing Technical Environment

The existing environment was recently migrated to Google Cloud, and five games came across using lift-and-shift virtual machine migrations, with a few minor exceptions. Each new game exists in an isolated Google Cloud project nested below a folder that maintains most of the permissions and network policies. Legacy games with low traffic have been consolidated into a single project. There are also separate environments for development and testing.

Key points here are the resource hierarchy exists with a project for each new game under a folder to control access using Service Control Permissions. Also, some of the small games would be hosted in a single project. There are also different environments for development, testing, and production.

Technical Requirements

Dynamically scale based on game activity.

  • can be done using GKE Cluster Autoscaler and Horizontal Pod Autoscaling to dynamically scale the nodes and applications as per the demand
  • Agones Fleet Autoscaler can scale game server instances up and down based on active players and buffer capacity

Publish scoring data on a near-real-time global leaderboard.

  • can be handled using Pub/Sub for capturing data and Dataflow for processing the data on the fly i.e real time
  • Cloud Spanner multi-region configuration provides strongly consistent reads for global leaderboard data

Store game activity logs in structured files for future analysis.

  • can be handled using Cloud Storage to store logs for future analysis
  • analysis can be handled using BigQuery either loading the data or using federated data source
  • data can also be stored directly using BigQuery as it would provide a low-cost data storage (as compared to Bigtable) for analytics
  • another advantage of BigQuery over Bigtable in this case its multi-regional, meeting the global footprint and latency requirements

Use GPU processing to render graphics server-side for multi-platform support.

  • GKE supports GPU node pools (NVIDIA T4, L4, A100, H100) for server-side rendering workloads
  • Support eventual migration of legacy games to this new platform.

Key Services & Architecture Patterns (Updated 2025)

Agones – Dedicated Game Server Hosting

Agones is an open-source platform (developed by Google and Ubisoft) built on Kubernetes that simplifies hosting, scaling, and managing dedicated game servers. It is the recommended approach for running multiplayer game servers on GKE.

  • Fleet Management: Manages pools (Fleets) of ready game server instances
  • Fleet Autoscaler: Automatically scales game server fleets based on demand
  • Allocator: Assigns players to available game servers with low latency
  • Multi-cluster: Supports game server allocation across multiple GKE clusters in different regions
  • GKE Autopilot Support: Runs on GKE Autopilot for hands-off node management

For Mountkirk Games, Agones would be ideal for managing the FPS game server instances across multiple regions, handling player allocation to the nearest arena, and scaling based on game activity.

Cloud Spanner Editions (2024)

Cloud Spanner introduced tier-based editions in 2024 providing greater flexibility:

  • Standard: Cost-effective for development, testing, and less demanding workloads
  • Enterprise: Regional and multi-regional configurations with 99.99%+ availability
  • Enterprise Plus: Designed for the most demanding workloads requiring 99.999% availability with multi-region configurations and geo-partitioning

For the global leaderboard requirement, Enterprise Plus edition with multi-region configuration is recommended to provide strongly consistent, low-latency reads globally.

Additional Spanner capabilities added in 2024-2025:

  • Spanner Graph (2024): Native graph support with GQL for relationship queries (e.g., player social graphs, matchmaking)
  • Vector Search: Built-in vector capabilities for similarity search
  • Autoscaling: Automatic compute scaling based on workload demand
  • Won 2025 ACM SIGMOD Systems Award for groundbreaking distributed database contributions

GKE Updates (2024-2026)

  • GKE Autopilot: Fully managed mode with per-pod billing — recommended for game servers with Agones
  • Fleets & Multi-cluster Management: Now included free with GKE Standard for managing game servers across regions
  • Custom Compute Classes: Define specific compute requirements for game server pods
  • Scale: Support for up to 130,000 nodes per cluster
  • GKE Inference Gateway: For AI/ML workloads (player behavior prediction, anti-cheat)

Cloud Deploy for GKE

Cloud Deploy is a fully managed continuous delivery service for GKE and Cloud Run. It provides:

  • Delivery pipelines with promotion across environments (dev → staging → production)
  • Canary and blue/green deployment strategies
  • Rollback capabilities
  • Integration with Cloud Build for CI/CD

This replaces the need for self-managed tools like Spinnaker for continuous deployment to GKE.

⚠️ Deployment Manager Deprecated (EOL: March 31, 2026)

Google Cloud Deployment Manager reached end of support on March 31, 2026. For infrastructure as code, use:

Use the DM Convert tool to migrate existing Deployment Manager configurations to Terraform.

Reference Architecture

Mobile Gaming Analysis Telemetry Solution

Refer to Best Practices for Mobile Game Online Architectures on Google Cloud

Mobile Gaming Analysis Telemetry Solution

Practice Questions

Question 1: Mountkirk Games needs to deploy their FPS game backend to serve players globally with minimal latency. They want to use managed services and scale dynamically. Which combination of services should they use?

  1. Compute Engine MIGs with Global Load Balancer and Cloud SQL
  2. GKE with Agones, Global Load Balancer, and Cloud Spanner (Enterprise Plus, multi-region)
  3. Cloud Run with Cloud Spanner and Cloud CDN
  4. App Engine Flex with Firestore and Cloud Load Balancing
Show Answer

Answer: B. – GKE with Agones provides dedicated game server hosting with fleet autoscaling, the Global Load Balancer routes players to the nearest region, and Cloud Spanner Enterprise Plus with multi-region configuration provides 99.999% availability for the global leaderboard with strongly consistent reads.

Question 2: Mountkirk Games wants to implement rapid iteration of game features with automated deployments to their GKE clusters across multiple environments. Which approach aligns best with Google Cloud managed services?

  1. Deployment Manager with custom templates for each environment
  2. Jenkins on Compute Engine with custom deployment scripts
  3. Cloud Build for CI with Cloud Deploy pipelines for progressive delivery to GKE
  4. Spinnaker on GKE for multi-environment deployments
Show Answer

Answer: C. – Cloud Build provides continuous integration (building and testing), while Cloud Deploy provides fully managed continuous delivery with promotion pipelines across environments (dev → staging → production), canary deployments, and rollback capabilities. Note: Deployment Manager (Option A) reached end of support in March 2026.

Question 3: Mountkirk Games needs to publish scoring data on a near-real-time global leaderboard. Which architecture best meets this requirement?

  1. Write scores directly to Cloud Spanner from game servers
  2. Use Pub/Sub to ingest scoring events, Dataflow for real-time processing and aggregation, and write to Cloud Spanner multi-region for the leaderboard
  3. Store scores in Memorystore (Redis) with periodic batch writes to BigQuery
  4. Use Cloud Functions triggered by Firestore to update a global leaderboard document
Show Answer

Answer: B. – Pub/Sub provides reliable message ingestion at scale, Dataflow processes and aggregates scores in real-time (handling late-arriving data with windowing), and Cloud Spanner multi-region provides strongly consistent global reads for the leaderboard display.

Question 4: Mountkirk Games wants their game servers to dynamically scale based on player activity while minimizing operational overhead. Which approach is recommended?

  1. GKE Standard with manual node pool management and custom autoscaling scripts
  2. GKE Autopilot with Agones and Fleet Autoscaler
  3. Compute Engine Managed Instance Groups with custom game server images
  4. Cloud Run with WebSocket support for real-time game sessions
Show Answer

Answer: B. – GKE Autopilot eliminates node management overhead with per-pod billing, while Agones provides purpose-built game server lifecycle management. The Fleet Autoscaler automatically scales game server instances based on player demand and configurable buffer policies.

Question 5: Mountkirk Games needs to store game activity logs for future analysis. They need a cost-effective solution that supports structured queries. Which approach is most appropriate?

  1. Cloud Bigtable for real-time ingestion and ad-hoc analytics
  2. Cloud Storage (Standard) with BigQuery federated queries for analysis
  3. Ingest through Pub/Sub, process with Dataflow, store in BigQuery for analytics
  4. Firestore in Datastore mode with periodic exports to Cloud Storage
Show Answer

Answer: C. – Pub/Sub handles high-volume log ingestion, Dataflow transforms and enriches the data in streaming or batch mode, and BigQuery provides cost-effective, serverless, multi-regional analytics storage with powerful SQL querying capabilities for future analysis.

Mountkirk Games References