Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 55

You are part of the security team in your company responsible for the security of its data in the Google Cloud. They use Cloud Storage to store sensitive data.

What of the following does NOT reduce the chance of data exposure?

A. Enable Public access prevention.
B. IAM permissions and ACL.
C. Signed Policy Documents.
D. Firewall rules.

Answer

Correct Answer: D

Option A is incorrect. This restricts public access to your bucket.
Option B is incorrect. This determines who can access your bucket and what actions can be taken on objects.
Option C is incorrect. This is used to restrict what objects can be uploaded to a bucket.
Option D is CORRECT. This is a network-level traffic restriction into a VPC and does not apply to Cloud Storage.

Reference:

https://cloud.google.com/storage/docs/access-control#choose_between_uniform_and_fine-grained_access

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

PCSE

Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 55

Answer

Ads Blocker Detected!!!