Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #118
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #118: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #118. The question stem and answer options stay visible for context.
Question
You work at a financial services company. You need to detect in near real-time when a Cloud Run functions service agent modifies the IAM policy of an Artifact Registry repository. You plan to use Security Command Center (SCC). You want to follow the Google-recommended approach. What should you do?
Options
- ACreate a custom Security Health Analytics (SHA) detector that scans Artifact Registry repositories
- BConfigure a Cloud Logging log sink to export all IAM policy changes to BigQuery, and create a
- CUse Event Threat Detection in SCC with a custom unexpected Cloud API call rule that detects
- DImplement a Cloud Run function that is triggered by IAM policy changes within the project and
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.