Professional-Cloud-Security-Engineer Exam Question 76

You are part of a security team that wants to ensure that a Cloud Storage bucket in Project A can only be readable from Project B. You also want to ensure that data in the Cloud Storage bucket cannot be accessed from or copied to Cloud Storage buckets outside the network, even if the user has the correct credentials.
What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 77

    A customer needs an alternative to storing their plain text secrets in their source-code management (SCM) system.
    How should the customer achieve this using Google Cloud Platform?
  • Professional-Cloud-Security-Engineer Exam Question 78

    Your company has deployed an artificial intelligence model in a central project As this model has a lot of sensitive intellectual property and must be kept strictly isolated from the internet, you must expose the model endpoint only to a defined list of projects in your organization What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 79

    Your organization is using GitHub Actions as a continuous integration and delivery (Cl/CD) platform. You must enable access to Google Cloud resources from the Cl/CD pipelines in the most secure way.
    What should you do?
  • Professional-Cloud-Security-Engineer Exam Question 80

    You are a Security Administrator at your organization. You need to restrict service account creation capability within production environments. You want to accomplish this centrally across the organization. What should you do?