You are developing client applications on Cloud Run and Cloud Functions. Your client mandates that all logs must remain accessible for one year to allow importing into their logging service. You need to implement this with minimal code modifications. What is the recommended approach?

Exam-Like

Deploy Falco or Twistlock on GKE to monitor for vulnerabilities on your running Pods.

15.0%

Configure Identity and Access Management (IAM) policies to create a least privilege model on your GKE clusters.

40.0%

Use Binary Authorization to attest images during your CI/CD pipeline.

25.0%

Enable Container Analysis in Artifact Registry, and check for common vulnerabilities and exposures (CVEs) in your container images.

20.0%

Google Professional Cloud DevOps Engineer