Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test
A health start-up company is moving its applications and data to Google Cloud. The company handles sensitive health data. Which of the following compliance standards must they meet?
A. SOX.
B. PCI-DSS.
C. HIPAA.
D. ISO-27001.
Correct Answer: C
- Option A is incorrect. SOX is relevant to accounting and financial reporting for U.S. public companies. It does not address the use case.
- Option B is incorrect. PCI DSS is a set of best network security and business practices guidelines adopted by the PCI Security Standards Council to establish a minimum-security standard to protect customers’ payment card information. It’s relevant to the industry and workload in this use case.
- Option C is CORRECT. HIPAA is a federal law that established data privacy and security requirements for certain entities and individuals to safeguard individuals’ health information. Hence it fits the industry in this use case.
- Option D is incorrect. This is a standard on how companies manage information security.
Reference:
Comments are closed, but trackbacks and pingbacks are open.