ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 164 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 164
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You are creating a new infrastructure CI/CD pipeline to deploy hundreds of ephemeral projects in your Google Cloud organization to enable your users to interact with Google Cloud. You want to restrict the use of the default networks in your organization while following Google-recommended best practices. What should you do?

  • A. Enable the constraints/compute.skipDefaultNetworkCreation organization policy constraint at the organization level.
  • B. Create a cron job to trigger a daily Cloud Function to automatically delete all default networks for each project.
  • C. Grant your users the IAM Owner role at the organization level. Create a VPC Service Controls perimeter around the project that restricts the compute.googleapis.com API.
  • D. Only allow your users to use your CI/CD pipeline with a predefined set of infrastructure templates they can deploy to skip the creation of the default networks.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Random_Mane at Sept. 6, 2022, 5:37 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zellck
Highly Voted 1 year, 7 months ago
Selected Answer: A
A is the answer. https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints - constraints/compute.skipDefaultNetworkCreation This boolean constraint skips the creation of the default network and related resources during Google Cloud Platform Project resource creation where this constraint is set to True. By default, a default network and supporting resources are automatically created when creating a Project resource.
upvoted 5 times
AzureDP900
1 year, 5 months ago
Agreed
upvoted 1 times
...
...
desertlotus1211
Most Recent 7 months, 3 weeks ago
https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints
upvoted 2 times
...
shayke
1 year, 4 months ago
Selected Answer: A
A-Org Policy
upvoted 2 times
...
AwesomeGCP
1 year, 6 months ago
Selected Answer: A
A. Enable the constraints/compute.skipDefaultNetworkCreation organization policy constraint at the organization level.
upvoted 4 times
...
Random_Mane
1 year, 7 months ago
Selected Answer: A
A. https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints "This boolean constraint skips the creation of the default network and related resources during Google Cloud Platform Project resource creation where this constraint is set to True. By default, a default network and supporting resources are automatically created when creating a Project resource. constraints/compute.skipDefaultNetworkCreation"
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago