Professional-Cloud-Security-Engineer Exam Question 56

You work for an organization in a regulated industry that has strict data protection requirements. The organization backs up their data in the cloud. To comply with data privacy regulations, this data can only be stored for a specific length of time and must be deleted after this specific period.
You want to automate the compliance with this regulation while minimizing storage costs. What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 57

    Your privacy team uses crypto-shredding (deleting encryption keys) as a strategy to delete personally identifiable information (PII). You need to implement this practice on Google Cloud while still utilizing the majority of the platform's services and minimizing operational overhead. What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 58

    A customer deploys an application to App Engine and needs to check for Open Web Application Security Project (OWASP) vulnerabilities.
    Which service should be used to accomplish this?
  • Professional-Cloud-Security-Engineer Exam Question 59

    Your organization develops software involved in many open source projects and is concerned about software supply chain threats You need to deliver provenance for the build to demonstrate the software is untampered.
    What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 60

    Your security team wants to implement a defense-in-depth approach to protect sensitive data stored in a Cloud Storage bucket. Your team has the following requirements:
    The Cloud Storage bucket in Project A can only be readable from Project B.
    The Cloud Storage bucket in Project A cannot be accessed from outside the network.
    Data in the Cloud Storage bucket cannot be copied to an external Cloud Storage bucket.
    What should the security team do?