Google Professional Data Engineer

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Use Cloud Storage to comply with major data protection standards. Use multiple service accounts attached to IAM groups to grant the appropriate access to each group

**Explanation:** Option D is the correct answer because it follows Google's recommended practices for PII protection: - **Cloud Storage** provides strong encryption capabilities and compliance with major data protection standards - **Multiple service accounts** attached to IAM groups allow for granular access control based on the principle of least privilege - This approach prevents over-privileged access and enables better audit trails - Using IAM groups with service accounts simplifies management and ensures consistent access policies Other options have issues: - Option A: Single service account creates a security risk and violates least privilege - Option B: Mixing service accounts for databases and human users is not the recommended pattern - Option C: Shared service account violates security best practices and creates audit challenges

Author: LeetQuiz .

Quick Answer

Answer-first summary for fast verification

Answer: Use Cloud Storage to comply with major data protection standards. Use multiple service accounts attached to IAM groups to grant the appropriate access to each group

Author: LeetQuiz .

Comments (0)

No comments yet.

NO.5 Government regulations in the banking industry mandate the protection of client's personally identifiable information (PII). Your company requires PII to be access controlled encrypted and compliant with major data protection standards In addition to using Cloud Data Loss Prevention (Cloud DIP) you want to follow Google-recommended practices and use service accounts to control access to PII. What should you do?

Real Exam

Community

LLeetQuiz

Assign the required identity and Access Management (IAM) roles to every employee, and create a single service account to access protect resources

0.0%

Use one service account to access a Cloud SQL database and use separate service accounts for each human user

0.0%

Use Cloud Storage to comply with major data protection standards. Use one service account shared by all users

Use Cloud Storage to comply with major data protection standards. Use multiple service accounts attached to IAM groups to grant the appropriate access to each group

100.0%