ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 185 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 185
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your organization is moving virtual machines (VMs) to Google Cloud. You must ensure that operating system images that are used across your projects are trusted and meet your security requirements.

What should you do?

  • A. Implement an organization policy to enforce that boot disks can only be created from images that come from the trusted image project.
  • B. Implement an organization policy constraint that enables the Shielded VM service on all projects to enforce the trusted image repository usage.
  • C. Create a Cloud Function that is automatically triggered when a new virtual machine is created from the trusted image repository. Verify that the image is not deprecated.
  • D. Automate a security scanner that verifies that no common vulnerabilities and exposures (CVEs) are present in your trusted image repository.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Sanjana2020 at Aug. 2, 2023, 9:13 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MoAk
5 months ago
Selected Answer: A
The Question mentioned 'trust'. Whilst D can satisfy this to some extent, its not what the Q is trying to get at. Answer is A
upvoted 1 times
...
lanjr01
1 year, 1 month ago
If org policy to enforce/ensure only trusted boot disk image is used across the projects; un-trusted boot image cannot be used successfully in the first place - - - answer A seems correct as it is a proactive measure and so lees need to scan for common vulnerabilities . On the other hand, the questions can be read as a "lift & shift" effort which seems to suggest virtual machines are moving to Google Cloud without prior security assessment before the move to Google Cloud - --
upvoted 1 times
...
desertlotus1211
1 year, 2 months ago
I'm going to have to change my previous answer... It asked about: ensuring that operating system images that are used across your projects are trusted and meet your security requirements... that will be Answer D not A.
upvoted 1 times
...
desertlotus1211
1 year, 7 months ago
What about Answer D?
upvoted 1 times
desertlotus1211
1 year, 7 months ago
It should be Answer A & D... Image repository is also the image project
upvoted 1 times
desertlotus1211
1 year, 7 months ago
Answer A is correct
upvoted 1 times
...
...
...
cyberpunk21
1 year, 8 months ago
Selected Answer: A
Option A looks more like it so is B but B seems a bit complicated and costly.
upvoted 2 times
...
pfilourenco
1 year, 8 months ago
Selected Answer: A
A is the correct.
upvoted 2 times
...
a190d62
1 year, 8 months ago
Selected Answer: A
it's A A - https://cloud.google.com/compute/docs/images/restricting-image-access
upvoted 4 times
...
Sanjana2020
1 year, 9 months ago
Is A correct?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago