Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 259 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 259
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your team maintains 1PB of sensitive data within BigOuery that contains personally identifiable information (PII). You need to provide access to this dataset to another team within your organization for analysis purposes. You must share the BigQuery dataset with the other team while protecting the PII. What should you do?

  • A. Utilize BigQuery's row-level access policies to mask PII columns based on the other team's user identities.
  • B. Export the BigQuery dataset to Cloud Storage. Create a VPC Service Control perimeter and allow only their team's project access to the bucket.
  • C. Implement data pseudonymization techniques to replace the PII fields with non-identifiable values. Grant the other team access to the pseudonymized dataset.
  • D. Create a filtered copy of the dataset and replace the sensitive data with hash values in a separate project. Grant the other team access to this new project.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by yokoyan at Sept. 6, 2024, 1:26 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
KLei
1 week, 2 days ago
Selected Answer: A
A provides less footprint to solve the problem.
upvoted 1 times
...
jmaquino
1 week, 3 days ago
Selected Answer: A
Example: https://cloud.google.com/bigquery/docs/row-level-security-intro?hl=es-419#filter_row_data_based_on_region
upvoted 2 times
...
jmaquino
1 week, 3 days ago
Selected Answer: A
Sorry: A: I disagree with answer C. Row-level security allows you to filter data and enable access to specific rows in a table, based on eligible user conditions. Row-level security allows a data owner or administrator to implement policies, such as “Team Users.” https://cloud.google.com/bigquery/docs/row-level-security-intro?hl=en-US
upvoted 2 times
KLei
1 week, 2 days ago
yes, "replace" the original data is wrong. we need somewhere to keep the true copy of data. If copy to another target and then replace the PII then it is OK. But saying 1PB data, it is time consuming for the copy operation and high BQ cost. C is not a good option.
upvoted 1 times
...
...
jmaquino
1 week, 3 days ago
Selected Answer: C
A: I disagree with answer C. Row-level security allows you to filter data and enable access to specific rows in a table, based on eligible user conditions. Row-level security allows a data owner or administrator to implement policies, such as “Team Users.” https://cloud.google.com/bigquery/docs/row-level-security-intro?hl=en-US
upvoted 1 times
KLei
1 week, 2 days ago
so your answer should be A. My answer is A
upvoted 1 times
...
...
yokoyan
2 months, 2 weeks ago
Selected Answer: C
I think it's C.
upvoted 2 times
KLei
1 week, 2 days ago
replacing the original PII values in the BQ? so where is the original true copy of data?
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel