Quickly grab our Professional-Cloud-Security-Engineer product now and kickstart your exam preparation today!
Name: | Professional Cloud Security Engineer |
Exam Code: | Professional-Cloud-Security-Engineer |
Certification: | Google Cloud Certified |
Vendor: | |
Total Questions: | 284 |
Last Updated: | May 08, 2024 |
You are a member of your company's security team. You have been asked to reduce your Linux bastion host external attack surface by removing all public IP addresses. Site Reliability Engineers (SREs) require access to the bastion host from public locations so they can access the internal VPC while off-site. How should you enable this access?
You need to enforce a security policy in your Google Cloud organization that prevents users from exposing objects in their buckets externally. There are currently no buckets in your organization. Which solution should you implement proactively to achieve this goal with the least operational overhead?
You are on your company's development team. You noticed that your web application hosted in staging on GKE dynamically includes user data in web pages without first properly validating the inputted data. This could allow an attacker to execute gibberish commands and display arbitrary content in a victim user's browser in a production environment.
Your company's users access data in a BigQuery table. You want to ensure they can only access the data
during working hours.
What should you do?