Professional-Cloud-Security-Engineer Exam Question 81
A customer is running an analytics workload on Google Cloud Platform (GCP) where Compute Engine instances are accessing data stored on Cloud Storage. Your team wants to make sure that this workload will not be able to access, or be accessed from, the internet.
Which two strategies should your team use to meet these requirements? (Choose two.)
Which two strategies should your team use to meet these requirements? (Choose two.)
Professional-Cloud-Security-Engineer Exam Question 82
A customer wants to deploy a large number of 3-tier web applications on Compute Engine.
How should the customer ensure authenticated network separation between the different tiers of the application?
How should the customer ensure authenticated network separation between the different tiers of the application?
Professional-Cloud-Security-Engineer Exam Question 83
You are the security admin of your company. Your development team creates multiple GCP projects under the "implementation" folder for several dev, staging, and production workloads. You want to prevent data exfiltration by malicious insiders or compromised code by setting up a security perimeter. However, you do not want to restrict communication between the projects.
What should you do?
What should you do?
Professional-Cloud-Security-Engineer Exam Question 84
A company has redundant mail servers in different Google Cloud Platform regions and wants to route customers to the nearest mail server based on location.
How should the company accomplish this?
How should the company accomplish this?
Professional-Cloud-Security-Engineer Exam Question 85
You are a security engineer at a finance company. Your organization plans to store data on Google Cloud, but your leadership team is worried about the security of their highly sensitive data Specifically, your company is concerned about internal Google employees' ability to access your company's data on Google Cloud. What solution should you propose?