Professional-Cloud-Security-Engineer Exam Question 41

You want to limit the images that can be used as the source for boot disks. These images will be stored in a dedicated project.
What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 42

    Your financial services company has an audit requirement under a strict regulatory framework that requires comprehensive, immutable audit trails for all administrative and data access activity that ensures that data is kept for seven years Your current logging is fragmented across individual projects You need to establish a centralized, tamper-proof, long-term logging solution accessible for audits What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 43

    A security audit uncovered several inconsistencies in your project's Identity and Access Management (IAM) configuration. Some service accounts have overly permissive roles, and a few external collaborators have more access than necessary. You need to gain detailed visibility into changes to IAM policies, user activity, service account behavior, and access to sensitive projects. What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 44

    Your organization needs to restrict the types of Google Cloud services that can be deployed within specific folders to enforce compliance requirements You must apply these restrictions only to the designated folders without affecting other parts of the resource hierarchy You want to use the most efficient and simple method What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 45

    A large e-retailer is moving to Google Cloud Platform with its ecommerce website. The company wants to ensure payment information is encrypted between the customer's browser and GCP when the customers checkout online.
    What should they do?