Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Google Discussions

Exam Professional Cloud Security Engineer topic 1 question 195 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 195
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You are auditing all your Google Cloud resources in the production project. You want to identify all principals who can change firewall rules.

What should you do?

  • A. Use Policy Analyzer to query the permissions compute.firewalls.get or compute.firewalls.list.
  • B. Use Firewall Insights to understand your firewall rules usage patterns.
  • C. Reference the Security Health Analytics – Firewall Vulnerability Findings in the Security Command Center.
  • D. Use Policy Analyzer to query the permissions compute.firewalls.create or compute.firewalls.update or compute.firewalls.delete.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by K1SMM at Aug. 2, 2023, 10:59 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
dija123
1 month ago
Selected Answer: D
D is correct
upvoted 1 times
...
ArizonaClassics
8 months ago
Use Policy Analyzer to query the permissions compute.firewalls.create or compute.firewalls.update or compute.firewalls.delete.
upvoted 1 times
...
cyberpunk21
8 months, 1 week ago
Selected Answer: D
D is the option it's a direct question
upvoted 2 times
...
anshad666
8 months, 1 week ago
Selected Answer: D
Must be D
upvoted 2 times
...
akg001
8 months, 2 weeks ago
Selected Answer: D
D- To identify all principals who can change firewall rules, you should use Policy Analyzer to query for the permissions related to creating, updating, or deleting firewall rules. These permissions are usually associated with compute.firewalls.create, compute.firewalls.update, and compute.firewalls.delete. By checking which principals have these permissions, you can determine who has the ability to change firewall rules in your Google Cloud project.
upvoted 2 times
...
alkaloid
8 months, 4 weeks ago
Selected Answer: D
D. You can use the Policy Analyzer to check which resources within your organization a principal has a certain roles or permissions on. To get this information, create a query that includes the principal whose access you want to analyze and one or more permissions or roles that you want to check for. https://cloud.google.com/policy-intelligence/docs/analyze-iam-policies#:~:text=You%20can%20use%20the%20Policy%20Analyzer%20to%20check%20which%20resources,you%20want%20to%20check%20for.
upvoted 1 times
...
K1SMM
9 months ago
D is correct!
upvoted 4 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel