PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #351
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #351: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #351. The question stem and answer options stay visible for context.
Question
Your organization uses a microservices architecture based on Google Kubernetes Engine (GKE). Recent security reviews recommend tighter controls around deployed container images to reduce potential vulnerabilities and maintain compliance. You need to implement an automated system by using managed services to ensure that only approved container images are deployed to the GKE clusters. What should you do?
Options
- ADevelop custom organization policies that restrict GKE cluster deployments to container images
- BEnforce Binary Authorization in your GKE clusters. Integrate container image vulnerability
- CAutomatically deploy new container images upon successful CI/CD builds by using Cloud Build
- DBuild a system using third-party vulnerability databases and custom scripts to identify potential
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.