ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 276 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 276
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You are creating a secure network architecture. You must fully isolate development and production environments, and prevent any network traffic between the two environments. The network team requires that there is only one central entry point to the cloud network from the on-premises environment. What should you do?

  • A. Create one Virtual Private Cloud (VPC) network per environment. Add the on-premises entry point to the production VPC. Peer the VPCs with each other and create firewall rules to prevent traffic.
  • B. Create one shared Virtual Private Cloud (VPC) network and use it as the entry point to the cloud network. Create separate subnets per environment. Create firewall rules to prevent traffic.
  • C. Create one Virtual Private Cloud (VPC) network per environment. Create a VPC Service Controls perimeter per environment and add one environment VPC to each.
  • D. Create one Virtual Private Cloud (VPC) network per environment. Create one additional VPC for the entry point to the cloud network. Peer the entry point VPC with the environment VPCs.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by yokoyan at Sept. 6, 2024, 1:42 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nah99
7 months, 2 weeks ago
Selected Answer: D
D satisfies all requirements
upvoted 2 times
...
koo_kai
9 months ago
Selected Answer: D
It's D
upvoted 1 times
...
d0fa7d5
10 months ago
Selected Answer: D
d is correct?
upvoted 1 times
...
SQLbox
10 months, 1 week ago
C , due to you must fully isolate development and production environments, and prevent any network traffic between the two environments
upvoted 1 times
...
yokoyan
10 months, 1 week ago
Selected Answer: C
I think it's C.
upvoted 1 times
1e22522
10 months, 1 week ago
VPC Service Controls help protect data and manage access but do not provide the same level of network isolation as creating separate VPCs. Service Controls are more about data access and security policies rather than network segmentation. Thus, Option D is the most suitable approach for achieving the required isolation and centralized network entry point.
upvoted 4 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel