Answer-first summary for fast verification
Answer: Configure VPC Service Controls and configure Private Google Access.
The correct answer is C: Configure VPC Service Controls and configure Private Google Access. VPC Service Controls provide an additional layer of security to protect against data exfiltration and unauthorized access in Google Cloud. This feature enhances your ability to mitigate risks posed by malicious insiders, compromised code, and accidental data leaks by defining security perimeters around your resources and services in Google Cloud. Configuring Private Google Access ensures that resources within the VPC network can securely access Google-managed services without exposing them to the public internet.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company has a Google Cloud project that utilizes BigQuery for its data warehousing needs. To ensure secure communication, a VPN tunnel is established between the on-premises environment and Google Cloud using Cloud VPN. Given recent security audits, the security team has raised concerns regarding potential data exfiltration by malicious insiders, compromised code, or accidental oversharing of sensitive information. What measures should the security team implement to address these concerns?
A
Configure Private Google Access for on-premises only.
B
Perform the following tasks: 1. Create a service account. 2. Give the BigQuery JobUser role and Storage Reader role to the service account. 3. Remove all other IAM access from the project.
C
Configure VPC Service Controls and configure Private Google Access.
D
Configure Private Google Access.
No comments yet.