nerdexam
ExamsPROFESSIONAL-CLOUD-DATABASE-ENGINEERQuestions#63
GoogleGoogle

PROFESSIONAL-CLOUD-DATABASE-ENGINEER · Question #63

PROFESSIONAL-CLOUD-DATABASE-ENGINEER Question #63: Real Exam Question with Answer & Explanation

The correct answer is B: Use VPC Service Controls to create a trusted network for the Bigtable service.. https://cloud.google.com/vpc-service-controls

Securing Database Solutions

Question

Your project is using Bigtable to store data that should not be accessed from the public internet under any circumstances, even if the requestor has a valid service account key. You need to secure access to this data. What should you do?

Options

  • AUse Identity and Access Management (IAM) for Bigtable access control.
  • BUse VPC Service Controls to create a trusted network for the Bigtable service.
  • CUse customer-managed encryption keys (CMEK).
  • DUse Google Cloud Armor to add IP addresses to an allowlist.

Explanation

https://cloud.google.com/vpc-service-controls

Topics

#VPC Service Controls#Bigtable Security#Network Perimeter#Data Access Control

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DATABASE-ENGINEER PracticeBrowse All PROFESSIONAL-CLOUD-DATABASE-ENGINEER Questions