KPMG

Multinational professional services network, and one of the Big Four accounting organizations.

4 Rounds ~21 Days Medium

Start Mock Interview

The Interview Loop

Recruiter Screen (30 min)

Standard fit check, behavioral questions, and resume overview.

Technical Loop (3-4 Rounds)

Deep dive into domain knowledge, coding, and system design.

Interview Question Bank

All Roles Backend Engineer 35 Cloud Engineer 35 Data Engineer 35 Data Scientist 35 DevOps Engineer 35 Frontend Engineer 35 Full Stack Engineer 35 Machine Learning Engineer 35 Product Manager 35 Software Engineer 35

All Topics Infrastructure as Code 6 Security 4 CI/CD 4 Scripting 3 Cloud Infrastructure 3 Containerization 2 Consulting & Communication 2 Monitoring & Observability 2

DevOps Engineer • Behavioral • medium

Tell me about a time you had to push back on a client's architectural request because it did not meet security or compliance standards.

#Stakeholder Management #Security #Conflict Resolution

Practice

DevOps Engineer • Behavioral • hard

Describe a situation where a deployment failed in production. How did you handle the rollback, the root cause analysis, and the client communication?

#Troubleshooting #Client Communication #Post-mortem

Practice

DevOps Engineer • Behavioral • easy

How do you stay updated with the latest DevOps tools, and how do you decide when it is appropriate to introduce a new tool to a client's stack?

#Continuous Learning #Consulting #Tooling

Practice

DevOps Engineer • Behavioral • easy

Tell me about a time you automated a manual process that saved your team or client significant time. What was the impact?

#Automation #Efficiency #Impact

Practice

DevOps Engineer • Behavioral • medium

Describe a time you had to explain a complex technical DevOps concept (like containerization or IaC) to a non-technical audit partner or client executive.

#Communication #Consulting #Empathy

Practice

DevOps Engineer • Behavioral • medium

KPMG often works with highly regulated clients. Tell me about your experience working with compliance frameworks like SOC2, HIPAA, or PCI-DSS in your DevOps practices.

#Security #Audit #Frameworks

Practice

DevOps Engineer • Coding • medium

Write a Python script using Boto3 to find and delete all unattached EBS volumes in an AWS account.

#Python #AWS #Automation

Practice

DevOps Engineer • Coding • easy

Write a Bash script to parse an Nginx access log and count the number of occurrences of 500 HTTP status codes.

#Bash #Linux #Log Analysis

Practice

DevOps Engineer • Coding • medium

Write a Dockerfile for a Python Flask application that ensures the application runs as a non-root user for security compliance.

#Docker #Security #Python

Practice

DevOps Engineer • Coding • medium

Write a Python function that takes a domain name as input and returns the number of days until its SSL certificate expires.

#Python #Networking #Security

Practice

DevOps Engineer • Coding • medium

Write a Terraform snippet to provision an AWS S3 bucket with versioning enabled, server-side encryption (KMS), and public access blocked.

#Terraform #AWS #Security

Practice

DevOps Engineer • System Design • hard

Explain how you would design a secure CI/CD pipeline for a financial client using Azure DevOps.

#Azure DevOps #DevSecOps #Pipelines

Practice

DevOps Engineer • System Design • hard

Describe how you would migrate a legacy monolithic application to a containerized microservices architecture on Azure Kubernetes Service (AKS).

#Azure #AKS #Microservices #Migration

Practice

DevOps Engineer • System Design • hard

Design a highly available and disaster-recovery-ready architecture for a 3-tier web application on AWS.

#AWS #High Availability #Disaster Recovery

Practice

DevOps Engineer • System Design • hard

Design a centralized logging and monitoring solution for a multi-cloud environment (AWS and Azure).

#Multi-cloud #Logging #Architecture

Practice

DevOps Engineer • Technical • medium

How do you manage Terraform state files in a multi-developer, multi-environment setup?

#Terraform #State Management #Collaboration

Practice

DevOps Engineer • Technical • medium

Explain the difference between a Kubernetes Deployment and a StatefulSet. When would you use each?

#Kubernetes #Architecture

Practice

DevOps Engineer • Technical • medium

How do you handle secrets management in a CI/CD pipeline to ensure credentials are never exposed in logs or source control?

#Secrets Management #CI/CD #DevSecOps

Practice

DevOps Engineer • Technical • easy

What is the purpose of a Terraform provider, and how do you lock provider versions to ensure idempotent deployments?

#Terraform #Version Control

Practice

DevOps Engineer • Technical • hard

How do you enforce compliance and governance policies across an enterprise Azure environment?

#Azure Policy #Governance #Compliance

Practice

DevOps Engineer • Technical • medium

Explain the GitOps workflow. How does it differ from traditional push-based CI/CD?

#GitOps #ArgoCD #Flux

Practice

DevOps Engineer • Technical • medium

How do you implement Role-Based Access Control (RBAC) in Kubernetes?

#Kubernetes #RBAC #IAM

Practice

DevOps Engineer • Technical • medium

What metrics do you monitor to ensure the health and performance of a Kubernetes cluster?

#Kubernetes #Prometheus #Metrics

Practice

DevOps Engineer • Technical • medium

Explain how VPC peering works in AWS and discuss the limitations associated with it.

#AWS #Networking #VPC

Practice

DevOps Engineer • Technical • hard

How do you handle database schema migrations in an automated deployment pipeline without causing downtime?

#Databases #Pipelines #Zero-Downtime

Practice

DevOps Engineer • Technical • medium

Describe the process of setting up an Azure Application Gateway with Web Application Firewall (WAF) for a web application.

#Azure #Networking #Security

Practice

DevOps Engineer • Technical • medium

How do you troubleshoot a pod in Kubernetes that is stuck in the CrashLoopBackOff state?

#Kubernetes #Debugging

Practice

DevOps Engineer • Technical • easy

What does it mean to 'taint' or 'replace' a resource in Terraform, and in what scenarios would you use this feature?

#Terraform #State Management

Practice

DevOps Engineer • Technical • medium

How do you integrate Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) into a Jenkins pipeline?

#Jenkins #Security Scanning #Pipelines

Practice

DevOps Engineer • Technical • easy

What are the differences between AWS IAM Roles and IAM Policies?

#AWS #IAM

Practice

DevOps Engineer • Technical • medium

How do you optimize Docker image sizes for faster deployments and reduced attack surfaces?

#Docker #Optimization #Security

Practice

DevOps Engineer • Technical • medium

Explain the concept of immutable infrastructure. Why is it particularly beneficial for auditability in a consulting environment like KPMG?

#Architecture #Security #Compliance

Practice

DevOps Engineer • Technical • medium

How do you configure cross-account access in AWS using IAM roles?

#AWS #IAM #Architecture

Practice

DevOps Engineer • Technical • hard

What is the difference between Blue/Green and Canary deployments? How would you implement a Canary deployment in Kubernetes?

#Kubernetes #Deployment Strategies #Traffic Routing

Practice

DevOps Engineer • Technical • medium

How do you manage dependencies and avoid 'dependency hell' in your infrastructure code (e.g., Terraform modules)?

#Terraform #Architecture #Best Practices

Practice

Difficulty Radar

Based on recent AI-sourced data.

Meet Your Interviewers

The "Standard" Interviewer

Senior Engineer

Focuses on core competencies, system constraints, and clear communication.

Simulate

Unwritten Rules

Think Out Loud

Always explain your thought process before writing code or drawing architecture.

Practice Now