ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 274 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 274
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your EU-based organization stores both Personally Identifiable Information (PII) and non-PII data in Cloud Storage buckets across multiple Google Cloud regions. EU data privacy laws require that the PII data must not be stored outside of the EU. To help meet this compliance requirement, you want to detect if Cloud Storage buckets outside of the EU contain healthcare data. What should you do?

  • A. Create a Sensitive Data Protection job. Specify the infoType of data to be detected and run the job across all Google Cloud Storage buckets.
  • B. Create a log sink with a filter on resourceLocation.currentLocations. Trigger an alert if a log message appears with a non- EUcountry.
  • C. Activate Security Command Center Premium. Use compliance monitoring to detect resources that do not follow the applicable healthcare regulation.
  • D. Enforce the gcp.resourceLocations organization policy and add "EU" in a custom rule that only applies on resources with the tag "healthcare".
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by yokoyan at Sept. 6, 2024, 1:41 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
LegoJesus
14 hours, 51 minutes ago
Selected Answer: C
Answer should be C. A - a data protection job just finds data that might contain PII. If you run it on all buckets in all regions, that won't confirm with the requirements of detecting buckets outside the EU. B - Irrelevant. C - Compliance monitoring in SCC will do this job for you. Just go in, click the compliance you're interested in (e.g. GDPR, healthcare data etc), and it will tell you why you're not compliant and where. D - Irrelevant.
upvoted 1 times
...
MoAk
2 months, 1 week ago
Selected Answer: A
Definitely A
upvoted 1 times
...
BondleB
3 months ago
Selected Answer: A
Specifying the info Type of data to be detected allows to find storage buckets outside the EU that contain healthcare data.
upvoted 1 times
...
yokoyan
5 months ago
Selected Answer: A
I think it's A.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago