ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 153 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 153
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You need to use Cloud External Key Manager to create an encryption key to encrypt specific BigQuery data at rest in Google Cloud. Which steps should you do first?

  • A. 1. Create or use an existing key with a unique uniform resource identifier (URI) in your Google Cloud project. 2. Grant your Google Cloud project access to a supported external key management partner system.
  • B. 1. Create or use an existing key with a unique uniform resource identifier (URI) in Cloud Key Management Service (Cloud KMS). 2. In Cloud KMS, grant your Google Cloud project access to use the key.
  • C. 1. Create or use an existing key with a unique uniform resource identifier (URI) in a supported external key management partner system. 2. In the external key management partner system, grant access for this key to use your Google Cloud project.
  • D. 1. Create an external key with a unique uniform resource identifier (URI) in Cloud Key Management Service (Cloud KMS). 2. In Cloud KMS, grant your Google Cloud project access to use the key.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Baburao at Sept. 3, 2022, 5:13 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zellck
Highly Voted 1 year, 1 month ago
Selected Answer: C
C is the answer. https://cloud.google.com/kms/docs/ekm#how_it_works - First, you create or use an existing key in a supported external key management partner system. This key has a unique URI or key path. - Next, you grant your Google Cloud project access to use the key, in the external key management partner system. - In your Google Cloud project, you create a Cloud EKM key, using the URI or key path for the externally-managed key.
upvoted 11 times
AzureDP900
11 months, 4 weeks ago
Thank you for detailed explanation, I agree with you
upvoted 1 times
...
...
TNT87
Most Recent 6 months, 3 weeks ago
Selected Answer: C
This section provides a broad overview of how Cloud EKM works with an external key. You can also follow the step-by-step instructions to create a Cloud EKM key accessed via the internet or via a VPC. 1.First, you create or use an existing key in a supported external key management partner system. This key has a unique URI or key path. 2. Next, you grant your Google Cloud project access to use the key, in the external key management partner system. 3. In your Google Cloud project, you create a Cloud EKM key, using the URI or key path for the externally managed key. https://cloud.google.com/kms/docs/ekm#how_it_works
upvoted 3 times
...
erfg
10 months, 1 week ago
C is the answer
upvoted 1 times
...
AwesomeGCP
1 year ago
Selected Answer: C
C. 1. Create or use an existing key with a unique uniform resource identifier (URI) in a supported external key management partner system. 2. In the external key management partner system, grant access for this key to use your Google Cloud project.
upvoted 4 times
...
Baburao
1 year, 1 month ago
C seems to be correct option. https://cloud.google.com/kms/docs/ekm#how_it_works
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago