Answer-first summary for fast verification
Answer: Export logs to a Pub/Sub topic, and trigger Cloud Function with the relevant log events.
The correct answer is C. Exporting logs to a Pub/Sub topic and triggering Cloud Functions for relevant log events follows Google-recommended practices for real-time log monitoring and alerting. This setup allows the security team to quickly react to detected anomalies such as unauthorized firewall changes or server breaches. Utilizing Cloud Functions for processing log events ensures immediate action without the latency associated with periodic queries or scheduled tasks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is currently utilizing Google Cloud and sends all operational logs to Cloud Logging. The security team at your company is responsible for monitoring these logs to identify potential security incidents. To enhance the security monitoring process, your team wants to react swiftly in the event of detecting anomalies, such as unauthorized firewall changes or server breaches. Considering Google-recommended practices, what should you do?
A
Schedule a cron job with Cloud Scheduler. The scheduled job queries the logs every minute for the relevant events.
B
Export logs to BigQuery, and trigger a query in BigQuery to process the log data for the relevant events.
C
Export logs to a Pub/Sub topic, and trigger Cloud Function with the relevant log events.
D
Export logs to a Cloud Storage bucket, and trigger Cloud Run with the relevant log events.
No comments yet.