PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #305
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #305: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #305. The question stem and answer options stay visible for context.
Question
Your organization 1s developing a new SaaS application on Google Cloud. Stringent compliance standards require visibility into privileged account activity, and potentially unauthorized changes and misconfigurations to the application's infrastructure. You need to monitor administrative actions, log changes to IAM roles and permissions, and be able to trace potentially unauthorized configuration changes. What should you do?
Options
- ACreate log sinks to Cloud Storage for long-term retention. Set up log-based alerts in Cloud
- BDeploy Cloud IDS and activate Firewall Rules Logging. Create a custom dashboard in Security
- CDetect sensitive administrative actions by using Cloud Logging with custom filters. Enable VPC
- DEnable Event Threat Detection and Security Health Analytics in Security Command Center. Set
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.