A company is deploying their application on Google Cloud Platform. Company policy requires long-term data to be stored using a solution that can automatically replicate data over at least two geographic places.
Which Storage solution are they allowed to use?
Your company requires the security and network engineering teams to identify all network anomalies within and across VPCs, internal traffic from VMs to VMs, traffic between end locations on the internet and VMs, and traffic between VMs to Google Cloud services in production. Which method should you use?
You are working with a client that is concerned about control of their encryption keys for sensitive dat a. The client does not want to store encryption keys at rest in the same cloud service provider (CSP) as the data that the keys are encrypting. Which Google Cloud encryption solutions should you recommend to this client? (Choose two.)
Which encryption algorithm is used with Default Encryption in Cloud Storage?
Your security team wants to implement a defense-in-depth approach to protect sensitive data stored in a Cloud Storage bucket. Your team has the following requirements:
* The Cloud Storage bucket in Project A can only be readable from Project B.
* The Cloud Storage bucket in Project A cannot be accessed from outside the network.
* Data in the Cloud Storage bucket cannot be copied to an external Cloud Storage bucket.
What should the security team do?
Enter your email address to download Google.Professional-Cloud-Security-Engineer.v2024-03-24.q252 Dumps
