When working with agents in a support center via online chat, an organization's customers often share pictures of their documents with personally identifiable information (PII). The organization that owns the support center is concerned that the PII is being stored in their databases as part of the regular chat logs they retain for review by internal or external analysts for customer service trend analysis.
Which Google Cloud solution should the organization use to help resolve this concern for the customer while still maintaining data utility?

• A.Use Cloud Key Management Service (KMS) to encrypt the PII data shared by customers before storing it for analysis.
• B.Use Object Lifecycle Management to make sure that all chat records with PII in them are discarded and not saved for analysis.
• C.Use the image inspection and redaction actions of the DLP API to redact PII from the images before storing them for analysis.
• D.Use the generalization and bucketing actions of the DLP API solution to redact PII from the texts before storing them for analysis.

Comment: *

Name: *

Email: *

Verification: *

A company allows every employee to use Google Cloud Platform. Each department has a Google Group, with all department members as group members. If a department member creates a new project, all members of that department should automatically have read-only access to all new project resources. Members of any other department should not have access to the project. You need to configure this behavior.
What should you do to meet these requirements?

• A.Create a Folder per department under the Organization. For each department's Folder, assign the Project Viewer role to the Google Group related to that department.
• B.Create a Folder per department under the Organization. For each department's Folder, assign the Project Browser role to the Google Group related to that department.
• C.Create a Project per department under the Organization. For each department's Project, assign the Project Viewer role to the Google Group related to that department.
• D.Create a Project per department under the Organization. For each department's Project, assign the Project Browser role to the Google Group related to that department.

Comment: *

Name: *

Email: *

Verification: *

You are working with a client that is concerned about control of their encryption keys for sensitive dat a. The client does not want to store encryption keys at rest in the same cloud service provider (CSP) as the data that the keys are encrypting. Which Google Cloud encryption solutions should you recommend to this client? (Choose two.)

• A.Secret Manager
• B.Google default encryption
• C.Cloud External Key Manager
• D.Customer-managed encryption keys
• E.Customer-supplied encryption keys.

Comment: *

Name: *

Email: *

Verification: *

An organization receives an increasing number of phishing emails.
Which method should be used to protect employee credentials in this situation?

• A.Multifactor Authentication
• B.A strict password policy
• C.Captcha on login pages
• D.Encrypted emails

Comment: *

Name: *

Email: *

Verification: *

A cloud customer has an on-premises key management system and wants to generate, protect, rotate, and audit encryption keys with it. How can the customer use Cloud Storage with their own encryption keys?

• A.Declare usage of default encryption at rest in the audit report on compliance
• B.Upload encryption keys to the same Cloud Storage bucket
• C.Use Customer Managed Encryption Keys (CMEK)
• D.Use Customer-Supplied Encryption Keys (CSEK)

Comment: *

Name: *

Email: *

Verification: *