Answer-first summary for fast verification
Answer: Ensure that the OS Config agent is installed on the Compute Engine instance. Provide the security team member roles/osconfig.vulnerabilityReportViewer permission.
The correct answer is C. To provide visibility into vulnerabilities and other OS metadata, the OS Config agent should be installed on the Compute Engine instance, and the security team member should be granted the roles/osconfig.vulnerabilityReportViewer permission. The OS Config agent is specifically designed for OS configuration, inventory management, and vulnerability reporting, making it the appropriate choice for this requirement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Your company has implemented a security vulnerability management policy which specifies that a member of the security team must have visibility into vulnerabilities and other operating system metadata for a particular Compute Engine instance. This instance is crucial as it hosts a critical application within your Google Cloud project. In compliance with your company's policy, what steps should you take to ensure this visibility?
A
Ensure that the Ops Agent is installed on the Compute Engine instance. Create a custom metric in the Cloud Monitoring dashboard. Provide the security team member with access to this dashboard.
B
Ensure that the Ops Agent is installed on the Compute Engine instance. Provide the security team member roles/osconfig.inventoryViewer permission.
C
Ensure that the OS Config agent is installed on the Compute Engine instance. Provide the security team member roles/osconfig.vulnerabilityReportViewer permission.
D
Ensure that the OS Config agent is installed on the Compute Engine instance. Create a log sink to BigQuery dataset. Provide the security team member with access to this dataset.