ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 33 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 33
Topic #: 1
[All Professional Cloud Security Engineer Questions]

A customer wants to move their sensitive workloads to a Compute Engine-based cluster using Managed Instance Groups (MIGs). The jobs are bursty and must be completed quickly. They have a requirement to be able to control the key lifecycle.
Which boot disk encryption solution should you use on the cluster to meet this customer's requirements?

  • A. Customer-supplied encryption keys (CSEK)
  • B. Customer-managed encryption keys (CMEK) using Cloud Key Management Service (KMS)
  • C. Encryption by default
  • D. Pre-encrypting files before transferring to Google Cloud Platform (GCP) for analysis
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by animesh54 at May 2, 2022, 6:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
animesh54
Highly Voted 2 years, 5 months ago
Selected Answer: B
Customer Managed Encryption keys using KMS lets users control the key management and rotation policies and Compute Engine Disks support CMEKs
upvoted 6 times
...
AwesomeGCP
Highly Voted 2 years ago
Selected Answer: B
Correct Answer: B Explanation/Reference: Reference https://cloud.google.com/kubernetes-engine/docs/how-to/dynamic-provisioning-cmek
upvoted 5 times
...
trashbox
Most Recent 5 months, 3 weeks ago
Selected Answer: B
"Control over the key lifecycle" is the key. The KMS is the most appropriate solution.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago