Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 51

A health start-up company is moving its applications and data to Google Cloud. The company handles sensitive health data. Which of the following compliance standards must they meet?

A. SOX.
B. PCI-DSS.
C. HIPAA.
D. ISO-27001.

Answer

Correct Answer: C

Option A is incorrect. SOX is relevant to accounting and financial reporting for U.S. public companies. It does not address the use case.
Option B is incorrect. PCI DSS is a set of best network security and business practices guidelines adopted by the PCI Security Standards Council to establish a minimum-security standard to protect customers’ payment card information. It’s relevant to the industry and workload in this use case.
Option C is CORRECT. HIPAA is a federal law that established data privacy and security requirements for certain entities and individuals to safeguard individuals’ health information. Hence it fits the industry in this use case.
Option D is incorrect. This is a standard on how companies manage information security.

Reference:

https://cloud.google.com/security/compliance/hipaa-compliance

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

PCSE

Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 51

Answer

Ads Blocker Detected!!!