ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 151 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 151
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your privacy team uses crypto-shredding (deleting encryption keys) as a strategy to delete personally identifiable information (PII). You need to implement this practice on Google Cloud while still utilizing the majority of the platform's services and minimizing operational overhead. What should you do?

  • A. Use client-side encryption before sending data to Google Cloud, and delete encryption keys on-premises.
  • B. Use Cloud External Key Manager to delete specific encryption keys.
  • C. Use customer-managed encryption keys to delete specific encryption keys.
  • D. Use Google default encryption to delete specific encryption keys.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Random_Mane at Sept. 17, 2022, 6:17 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Random_Mane
Highly Voted 7 months, 1 week ago
Selected Answer: C
C. https://cloud.google.com/sql/docs/mysql/cmek "You might have situations where you want to permanently destroy data encrypted with CMEK. To do this, you destroy the customer-managed encryption key version. You can't destroy the keyring or key, but you can destroy key versions of the key."
upvoted 11 times
...
AzureDP900
Most Recent 5 months, 3 weeks ago
C is right
upvoted 2 times
...
rotorclear
6 months, 2 weeks ago
Selected Answer: C
CMEK allows users to manage their keys on google without operation overhead of managing keys externally
upvoted 4 times
...
AwesomeGCP
6 months, 2 weeks ago
Selected Answer: C
C. Use customer-managed encryption keys to delete specific encryption keys.
upvoted 2 times
...
zellck
7 months ago
Selected Answer: C
C is the answer to minimise operational overhead.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago