Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Google Discussions

Exam Professional Cloud Security Engineer topic 1 question 33 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 33
Topic #: 1
[All Professional Cloud Security Engineer Questions]

A customer wants to move their sensitive workloads to a Compute Engine-based cluster using Managed Instance Groups (MIGs). The jobs are bursty and must be completed quickly. They have a requirement to be able to control the key lifecycle.
Which boot disk encryption solution should you use on the cluster to meet this customer's requirements?

  • A. Customer-supplied encryption keys (CSEK)
  • B. Customer-managed encryption keys (CMEK) using Cloud Key Management Service (KMS)
  • C. Encryption by default
  • D. Pre-encrypting files before transferring to Google Cloud Platform (GCP) for analysis
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
Reference -
https://cloud.google.com/kubernetes-engine/docs/how-to/dynamic-provisioning-cmek
by animesh54 at May 2, 2022, 6:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
animesh54
Highly Voted 2 years ago
Selected Answer: B
Customer Managed Encryption keys using KMS lets users control the key management and rotation policies and Compute Engine Disks support CMEKs
upvoted 6 times
...
AwesomeGCP
Highly Voted 1 year, 7 months ago
Selected Answer: B
Correct Answer: B Explanation/Reference: Reference https://cloud.google.com/kubernetes-engine/docs/how-to/dynamic-provisioning-cmek
upvoted 5 times
...
trashbox
Most Recent 2 weeks, 1 day ago
Selected Answer: B
"Control over the key lifecycle" is the key. The KMS is the most appropriate solution.
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel