Answer-first summary for fast verification
Answer: GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
Option C is the most accurate because GKE and GCP provide the necessary tools and infrastructure to build a PCI DSS-compliant environment, but compliance requires proper configuration and implementation of security controls by the user, as per the shared responsibility model. Option A is incorrect because App Engine is not the only PCI DSS-certified compute platform; GKE and Compute Engine can also be used. Option B is false since GKE is not considered shared hosting and can be part of a compliant setup. Option D is misleading because while GCP's infrastructure is PCI DSS-certified, not all services are automatically compliant, and user responsibility is key.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is migrating from an on-premises data center to the cloud and plans to use Google Kubernetes Engine (GKE) for workload orchestration. Part of the architecture must be PCI DSS-compliant. Which of the following statements is the most accurate?
A
App Engine is the only compute platform on GCP that is certified for PCI DSS hosting.
B
GKE cannot be used under PCI DSS because it is considered shared hosting.
C
GKE and GCP provide the tools you need to build a PCI DSS-compliant environment.
D
All Google Cloud services are usable because Google Cloud Platform is certified PCI-compliant.
No comments yet.