Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 30 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 30
Topic #: 1
[All Professional Cloud Security Engineer Questions]

A company migrated their entire data/center to Google Cloud Platform. It is running thousands of instances across multiple projects managed by different departments. You want to have a historical record of what was running in Google Cloud Platform at any point in time.
What should you do?

  • A. Use Resource Manager on the organization level.
  • B. Use Forseti Security to automate inventory snapshots.
  • C. Use Stackdriver to create a dashboard across all projects.
  • D. Use Security Command Center to view all assets across the organization.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by mozammil89 at March 19, 2020, 8:22 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
smart123
Highly Voted 4 years, 5 months ago
'B is the correct answer. Only Forseti security can have both 'past' and 'present' (i.e. historical) records of the resources. https://forsetisecurity.org/about/
upvoted 12 times
gcpengineer
1 year, 6 months ago
Forseti is outdated,no one uses it anymore
upvoted 4 times
...
...
mynk29
Highly Voted 2 years, 9 months ago
Outdated questions- you should use asset inventory now.
upvoted 11 times
...
brpjp
Most Recent 2 months, 1 week ago
D - SCC is supported by Gemini and not Forseti.
upvoted 1 times
...
Roro_Brother
7 months, 1 week ago
Selected Answer: D
D is good answer in this case. Foreseti is outdated
upvoted 2 times
...
Kiroo
7 months, 2 weeks ago
Selected Answer: D
It seems that for set is outdated and its features have been incorporated into security command center
upvoted 3 times
...
madcloud32
8 months, 3 weeks ago
Selected Answer: D
D is good answer in this case. Foreseti is outdated
upvoted 2 times
...
b6f53d8
10 months, 3 weeks ago
D is a good answer
upvoted 2 times
...
ced3eals
1 year ago
Selected Answer: D
For an actual recent answer, D is the correct one.
upvoted 1 times
...
rottzy
1 year, 2 months ago
weird, Forseti - depreciated on Oct 2018, why was it even considered as an answer! 😉😁 https://forsetisecurity.org/news/2019/02/18/deprecate-1.0.html I'm going with option D
upvoted 1 times
...
cyberpunk21
1 year, 3 months ago
Selected Answer: A
B is old way of doing things and things got updated
upvoted 2 times
...
[Removed]
1 year, 4 months ago
Selected Answer: B
"B" is the correct answer. Forseti has been deprecated however it's capabilities and features (like asset inventory) have been incorporated into Security Command Center. https://cloud.google.com/security-command-center/docs/concepts-security-command-center-overview#inventory
upvoted 1 times
...
amanshin
1 year, 5 months ago
Correct is A Problem with Forseti - it's a third party tool, and it's sunset archived now due to lack of involvement. Do you really think Google would care to place it in test? Using Resource Manager on the organization level is a good way to have a historical record of what was running in Google Cloud Platform at any point in time. This is because Resource Manager provides a centralized view of all of your organization's resources, including projects, folders, and organization policies. It's a native tool, so I would go for answer A.
upvoted 1 times
...
FunkyB
1 year, 9 months ago
B is the correct answer. "Keep track of your environment Take inventory snapshots of your Google Cloud Platform (GCP) resources on a recurring cadence so that you always have a history of what was in your cloud." https://forsetisecurity.org/
upvoted 1 times
...
AwesomeGCP
2 years, 1 month ago
Selected Answer: B
B is the correct answer. Only Forseti security can have both 'past' and 'present' (i.e. historical) records of the resources. https://forsetisecurity.org/about/
upvoted 2 times
...
absipat
2 years, 5 months ago
b of course
upvoted 1 times
...
mitow95526
3 years, 5 months ago
https://cloud.google.com/security-command-center Discover and view your assets in near-real time across App Engine, BigQuery, Cloud SQL, Cloud Storage, Compute Engine, Cloud Identity and Access Management, Google Kubernetes Engine, and more. Review historical discovery scans to identify new, modified, or deleted assets. Why not D?
upvoted 4 times
ThisisJohn
2 years, 11 months ago
I guess the reason to discard D is that it says "all assets", while according to the documentation, "Security Command Center supports a large subset of Google Cloud assets.", so it supports a large number but not all assets. Ref: https://cloud.google.com/security-command-center/docs/concepts-security-command-center-overview#inventory
upvoted 2 times
...
PATILDXB
1 year, 11 months ago
Azure security center does provide only realtime view on cloud. Endpoints once deleted or offboarded are no more visible in azure security center, which means historical details are lost
upvoted 1 times
...
...
pfilourenco
3 years, 6 months ago
And about D?
upvoted 3 times
...
Load full discussion...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel