PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #246: Real Exam Question with Answer & Explanation

Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #246. The question stem and answer options stay visible for context.

Submitted by deeparc· Apr 18, 2026Ensuring data protection

Question

Your organization wants to protect all workloads that run on Compute Engine VM to ensure that the instances weren't compromised by boot-level or kernel-level malware. Also, you need to ensure that data in use on the VM cannot be read by the underlying host system by using a hardware-based solution. What should you do?

Options

A1. Use Google Shielded VM including secure boot, Virtual Trusted Platform Module (vTPM), and
B1. Activate Virtual Machine Threat Detection in Security Command Center (SCC) Premium.
C1. Use Google Shielded VM including secure boot, Virtual Trusted Platform Module (vTPM), and
D1. Use secure hardened images from the Google Cloud Marketplace.

Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer

You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER - $49.99 / 30 days Sign in

Topics

#Shielded VM#Confidential VM#VM Security#Data in use protection

Full PROFESSIONAL-CLOUD-SECURITY-ENGINEER Practice Browse All PROFESSIONAL-CLOUD-SECURITY-ENGINEER Questions