ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 198 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 198
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your organization has on-premises hosts that need to access Google Cloud APIs. You must enforce private connectivity between these hosts, minimize costs, and optimize for operational efficiency.

What should you do?

  • A. Set up VPC peering between the hosts on-premises and the VPC through the internet.
  • B. Route all on-premises traffic to Google Cloud through an IPsec VPN tunnel to a VPC with Private Google Access enabled.
  • C. Enforce a security policy that mandates all applications to encrypt data with a Cloud Key Management Service (KMS) key before you send it over the network.
  • D. Route all on-premises traffic to Google Cloud through a dedicated or Partner Interconnect to a VPC with Private Google Access enabled.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by K1SMM at Aug. 3, 2023, 12:07 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
KLei
6 days, 7 hours ago
Selected Answer: B
https://cloud.google.com/vpc/docs/configure-private-google-access-hybrid Private Google Access for on-premises hosts provides a way for on-premises systems to connect to Google APIs and services by routing traffic through a Cloud VPN tunnel or a VLAN attachment for Cloud Interconnect. Private Google Access for on-premises hosts is an alternative to connecting to Google APIs and services over the internet.
upvoted 1 times
...
Pime13
1 week, 5 days ago
Selected Answer: D
While Option B can be cost-effective and simpler to set up initially, Option D provides a more robust, reliable, and scalable solution for private connectivity to Google Cloud APIs. If you have any more questions or need further clarification, feel free to ask!
upvoted 1 times
...
Bettoxicity
8 months, 3 weeks ago
Selected Answer: D
Why not B?: "IPsec VPN with Public Google Access": While an IPsec VPN can provide some level of security, it still relies on the public internet for connectivity, introducing potential security risks and higher costs compared to an Interconnect. Additionally, Public Google Access exposes API endpoints to the internet, which might not be desirable.
upvoted 1 times
...
cyberpunk21
1 year, 4 months ago
Selected Answer: B
B is punju option as they cost way more less than other options
upvoted 3 times
...
RuchiMishra
1 year, 4 months ago
Selected Answer: B
VPN tunnel is less costly than interconnect
upvoted 4 times
akg001
1 year, 4 months ago
I think it optimize operational efficiency too as in Interconnect we have more complexity in network security operation. You are right B should be the answer.
upvoted 1 times
...
...
akg001
1 year, 4 months ago
can be D too. as question is asking to optimize for operational efficiency.
upvoted 1 times
akg001
1 year, 4 months ago
Sorry it should B
upvoted 1 times
...
...
K1SMM
1 year, 4 months ago
B less costs
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago