Online Access Free Google.Professional-Cloud-Security-Engineer.v2021-10-23.q83 Practice Test (Page 13)

Professional-Cloud-Security-Engineer Exam Question 56

You want to evaluate GCP for PCI compliance. You need to identify Google's inherent controls.
Which document should you review to find the information?

A.PCI DSS Requirements and Security Assessment Procedures

B.Google Cloud Platform: Customer Responsibility Matrix

C.PCI SSC Cloud Computing Guidelines

D.Product documentation for Compute Engine

Professional-Cloud-Security-Engineer Exam Question 57

A manager wants to start retaining security event logs for 2 years while minimizing costs. You write a filter to select the appropriate log entries.
Where should you export the logs?

A.BigQuery datasets

B.Cloud Storage buckets

C.StackDriver logging

D.Cloud Pub/Sub topics

Professional-Cloud-Security-Engineer Exam Question 58

A DevOps team will create a new container to run on Google Kubernetes Engine. As the application will be internet-facing, they want to minimize the attack surface of the container.
What should they do?

A.Use Cloud Build to build the container images.

B.Build small containers using small base images.

C.Delete non-used versions from Container Registry.

D.Use a Continuous Delivery tool to deploy the application.

Professional-Cloud-Security-Engineer Exam Question 59

In order to meet PCI DSS requirements, a customer wants to ensure that all outbound traffic is authorized.
Which two cloud offerings meet this requirement without additional compensating controls? (Choose two.)

A.App Engine

B.Cloud Functions

C.Compute Engine

D.Google Kubernetes Engine

E.Cloud Storage

Professional-Cloud-Security-Engineer Exam Question 60

A customer wants to move their sensitive workloads to a Compute Engine-based cluster using Managed Instance Groups (MIGs). The jobs are bursty and must be completed quickly. They have a requirement to be able to manage and rotate the encryption keys.
Which boot disk encryption solution should you use on the cluster to meet this customer's requirements?

A.Customer-supplied encryption keys (CSEK)

B.Customer-managed encryption keys (CMEK) using Cloud Key Management Service (KMS)

C.Encryption by default

D.Pre-encrypting files before transferring to Google Cloud Platform (GCP) for analysis

Other Version: 133Google.Professional-Cloud-Security-Engineer.v2025-12-26.q111; 761Google.Professional-Cloud-Security-Engineer.v2024-11-26.q142; 894Google.Professional-Cloud-Security-Engineer.v2023-10-27.q86; 1036Google.Professional-Cloud-Security-Engineer.v2023-03-25.q71; 901Google.Professional-Cloud-Security-Engineer.v2023-03-10.q59; 103Google.Actualtests4sure.Professional-Cloud-Security-Engineer.v2022-05-23.by.clare.108q.pdf; 2127Google.Professional-Cloud-Security-Engineer.v2022-05-10.q108; 130Google.Ipassleader.Professional-Cloud-Security-Engineer.v2021-09-16.by.winston.77q.pdf

Latest Upload: 133Google.Professional-Cloud-Security-Engineer.v2025-12-26.q111; 130VMware.2V0-13.25.v2025-12-26.q237; 122Microsoft.AI-900-CN.v2025-12-26.q125; 107SAP.C_BCBAI_2502.v2025-12-26.q30; 107SAP.C_OCM_2503.v2025-12-26.q35; 118HP.HPE0-S59.v2025-12-26.q47; 135Splunk.SPLK-4001.v2025-12-25.q27; 144ServiceNow.CIS-HAM.v2025-12-24.q91; 166EMC.NCP-AIO.v2025-12-24.q126; 125Salesforce.Revenue-Cloud-Consultant-Accredited-Professional.v2025-12-24.q39

Professional-Cloud-Security-Engineer Exam Question 56

Professional-Cloud-Security-Engineer Exam Question 57

Professional-Cloud-Security-Engineer Exam Question 58

Professional-Cloud-Security-Engineer Exam Question 59

Professional-Cloud-Security-Engineer Exam Question 60

Download PDF File