Sample Exam Questions and Answers of Professional-Cloud-Security-Engineer Dumps | 2021 Updated PDF Demo

ByAaron Whiteman

Sample Exam Questions and Answers of Professional-Cloud-Security-Engineer Dumps | 2021 Updated PDF Demo

Test Information:

Total Questions:    93

Test Number:    Professional-Cloud-Security-Engineer

Vendor Name:    Google

Certification Name:    Google Cloud Certified Exam

Test Name:    Google Cloud Certified – Professional Cloud Security Engineer

Official Site:    https://www.examsforsure.com/

Question #:1

A DevOps team will create a new container to run on Google Kubernetes Engine. As the application will be internet-facing, they want to minimize the attack surface of the container. What should they do?

  • Use Cloud Build to build the container images.
  • Build small containers using small base images.
  • Delete non-used versions from Container Registry.
  • Use a Continuous Delivery tool to deploy the application.

Answer: D

Question #:2

While migrating your organization’s infrastructure to GCP, a large number of users will need to access GCP Console. The Identity Management team already has a well-established way to manage your users and want to keep using your existing Active Directory or LDAP server along with the existing SSO password. What should you do?

  • Manually synchronize the data in Google domain with your existing Active Directory or LDAP server.
  • Use Google Cloud Directory Sync to synchronize the data in Google domain with your existing Active Directory or LDAP server.
  • Users sign in directly to the GCP Console using the credentials from your on-premises Kerberos compliant identity provider.
  • Users sign in using OpenID (OIDC) compatible IdP, receive an authentication token, then use that token to log in to the GCP Console.

Answer: B

Question #:6

A website design company recently migrated all customer sites to App Engine. Some sites are still in progress and should only be visible to customers and company employees from any location. Which solution will restrict access to the in-progress sites?

  • Upload an .htaccess file containing the customer and employee user accounts to App Engine.
  • Create an App Engine firewall rule that allows access from the customer and employee networks and denies all other traffic.
  • Enable Cloud Identity-Aware Proxy (IAP), and allow access to a Google Group that contains the customer and employee user accounts.

Use Cloud VPN to create a VPN connection between the relevant on-premises networks and the company’s GCP Virtual Private Cloud (VPC) network.

Answer: C

For More Details:

https://www.examsforsure.com/google/professional-cloud-security-engineer-dumps.html

Moreover:

https://www.examsforsure.com/google-cloud-certified-certification.html

For More Google Exams, Please visit:

https://www.examsforsure.com/Google.html

 

 

Prepared By:   Examsforsure.com