ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Architect All Questions

View all questions & answers for the Professional Cloud Architect exam
Go to Exam

Exam Professional Cloud Architect topic 1 question 200 discussion

Actual exam question from Google's Professional Cloud Architect
Question #: 200
Topic #: 1
[All Professional Cloud Architect Questions]

Your company has a Google Cloud project that uses BigOuery for data warehousing. The VPN tunnel between the on-premises environment and Google Cloud is configured with Cloud VPN. Your security team wants to avoid data exfiltration by malicious insiders, compromised code, and accidental oversharing. What should you do?

  • A. Configure Private Service Connect.
  • B. Configure VPC Service Controls and configure Private Google Access for on-promises hosts.
  • C. Create a service account, grant the BigQuery JobUser role and Storage Object Viewer role to the service account, and remove all other Identity and Access Management (IAM) access from the project.
  • D. Configure Private Google Access.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by yokoyan at March 17, 2025, 6:55 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
samsonakala
3 weeks, 6 days ago
Selected Answer: B
Answer is B, and I think the question is duplicated
upvoted 1 times
...
frank_tsai_tech
1 month, 2 weeks ago
Selected Answer: B
Explanation: • VPC Service Controls help you create a security perimeter around your Google Cloud services (like BigQuery) to reduce the risk of data exfiltration, even if credentials are compromised or insiders attempt to overshare data. • Private Google Access for on-premises hosts ensures that on-premises systems can securely access Google APIs and services without going over the public internet, further reducing exposure. Together, these measures address the security team’s concerns by limiting external data leakage from BigQuery while allowing secure, private connectivity.
upvoted 1 times
...
yokoyan
1 month, 2 weeks ago
Selected Answer: B
(Gemini's Answer) Answer: B Comment: VPC Service Controls establishes a security perimeter to mitigate data exfiltration risks, while Private Google Access enables private connectivity from on-premises, enhancing overall security. Combining these effectively addresses the security team's concerns about data leakage.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago