ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 226 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 226
Topic #: 1
[All Professional Cloud Security Engineer Questions]

Your organization wants to protect all workloads that run on Compute Engine VM to ensure that the instances weren't compromised by boot-level or kernel-level malware. Also, you need to ensure that data in use on the VM cannot be read by the underlying host system by using a hardware-based solution.

What should you do?

  • A. 1. Use Google Shielded VM including secure boot, Virtual Trusted Platform Module (vTPM), and integrity monitoring.
    2. Create a Cloud Run function to check for the VM settings, generate metrics, and run the function regularly.
  • B. 1. Activate Virtual Machine Threat Detection in Security Command Center (SCC) Premium.
    2. Monitor the findings in SCC.
  • C. 1. Use Google Shielded VM including secure boot, Virtual Trusted Platform Module (vTPM), and integrity monitoring.
    2. Activate Confidential Computing.
    3. Enforce these actions by using organization policies.
  • D. 1. Use secure hardened images from the Google Cloud Marketplace.
    2. When deploying the images, activate the Confidential Computing option.
    3. Enforce the use of the correct images and Confidential Computing by using organization policies.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by pfilourenco at Aug. 4, 2023, 11:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
crazycosmos
6 months, 2 weeks ago
Selected Answer: C
C fits the best
upvoted 1 times
...
MMNB2023
1 year ago
Selected Answer: C
Confidential computing for data security in use.
upvoted 1 times
...
Andrei_Z
1 year, 3 months ago
Selected Answer: C
Confidential computing is about data in use not data at rest but C is the correct answer as there aren't any others that fit better
upvoted 1 times
...
rishi110196
1 year, 3 months ago
C is correct because questions says data should remain secure at rest which can only be done by Confidential Vms
upvoted 1 times
...
gcp4test
1 year, 4 months ago
Selected Answer: C
C it the best option
upvoted 2 times
...
pfilourenco
1 year, 4 months ago
Selected Answer: C
C is the correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel