Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 184 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 184
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You have a highly sensitive BigQuery workload that contains personally identifiable information (PII) that you want to ensure is not accessible from the internet. To prevent data exfiltration, only requests from authorized IP addresses are allowed to query your BigQuery tables.

What should you do?

  • A. Use service perimeter and create an access level based on the authorized source IP address as the condition.
  • B. Use Google Cloud Armor security policies defining an allowlist of authorized IP addresses at the global HTTPS load balancer.
  • C. Use the Restrict Resource Service Usage organization policy constraint along with Cloud Data Loss Prevention (DLP).
  • D. Use the Restrict allowed Google Cloud APIs and services organization policy constraint along with Cloud Data Loss Prevention (DLP).
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Sanjana2020 at Aug. 2, 2023, 9:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
pfilourenco
5 months, 2 weeks ago
Selected Answer: A
A is the correct one.
upvoted 1 times
...
b6f53d8
9 months, 4 weeks ago
A and B will work, but A in better in my opinion
upvoted 1 times
...
i_am_robot
11 months, 2 weeks ago
Selected Answer: A
The best option would be A. Use service perimeter and create an access level based on the authorized source IP address as the condition. This approach allows you to create a boundary that controls access to Google Cloud resources for services within the same perimeter. By creating an access level based on the authorized source IP address as the condition, you can ensure that only requests from authorized IP addresses are allowed to query your BigQuery tables. This effectively prevents data exfiltration and ensures that your sensitive BigQuery workload is not accessible from the internet.
upvoted 1 times
...
cyberpunk21
1 year, 3 months ago
Selected Answer: A
Option A is correct
upvoted 2 times
...
pfilourenco
1 year, 3 months ago
Selected Answer: A
A is the correct.
upvoted 4 times
...
Sanjana2020
1 year, 3 months ago
I think its A.
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel