PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #188
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #188: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #188. The question stem and answer options stay visible for context.
Question
Your security team wants to implement a defense-in-depth approach to protect sensitive data stored in a Cloud Storage bucket. Your team has the following requirements: - The Cloud Storage bucket in Project A can only be readable from Project B. - The Cloud Storage bucket in Project A cannot be accessed from outside the network. - Data in the Cloud Storage bucket cannot be copied to an external Cloud Storage bucket. What should the security team do?
Options
- AEnable domain restricted sharing in an organization policy, and enable uniform bucket-level
- BEnable VPC Service Controls, create a perimeter around Projects A and B, and include the Cloud
- CEnable Private Access in both Project A and B's networks with strict firewall rules that allow
- DEnable VPC Peering between Project A and B's networks with strict firewall rules that allow
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.