Answer-first summary for fast verification
Answer: Activate Security Command Center Premium. Use the Compliance Monitoring product to filter findings that may not be PCI DSS compliant.
The question requires detecting PCI DSS deviations at the IaaS level in a Google Cloud landing zone. Option D is optimal because Security Command Center Premium's Compliance Monitoring product specifically provides continuous compliance monitoring against standards like PCI DSS, identifying control failures and deviations across the infrastructure. The community discussion strongly supports D (90% consensus) with high upvotes, noting that A only covers data protection aspects, B is just a checklist download without current infrastructure analysis, and C focuses on controls without comprehensive PCI DSS monitoring. SCC Premium offers automated, real-time compliance assessment that directly addresses the audit preparation requirement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your organization must comply with the Payment Card Industry Data Security Standard (PCI DSS). To prepare for an audit, you need to identify deviations at the infrastructure-as-a-service (IaaS) level within your Google Cloud landing zone. What should you do?
A
Create a data profile covering all payment relevant data types. Configure Data Discovery and a risk analysis job in Google Cloud Sensitive Data Protection to analyze findings.
B
Use the Google Cloud Compliance Reports Manager to download the latest version of the PCI DSS report Analyze the report to detect deviations.
C
Create an Assured Workloads folder in your Google Cloud organization. Migrate existing projects into the folder and monitor for deviations in the PCI DSS.
D
Activate Security Command Center Premium. Use the Compliance Monitoring product to filter findings that may not be PCI DSS compliant.
No comments yet.