Google Professional Cloud Security Engineer Exam - Topic 4 Question 62 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam

Question #: 62
Topic #: 4

[All Professional Cloud Security Engineer Questions]

You have been tasked with inspecting IP packet data for invalid or malicious content. What should you do?

AUse Packet Mirroring to mirror traffic to and from particular VM instances. Perform inspection using security software that analyzes the mirrored traffic.

BEnable VPC Flow Logs for all subnets in the VPC. Perform inspection on the Flow Logs data using Cloud Logging.

CConfigure the Fluentd agent on each VM Instance within the VPC. Perform inspection on the log data using Cloud Logging.

DConfigure Google Cloud Armor access logs to perform inspection on the log data.

Show Suggested Answer

Suggested Answer: B

by Glory at Mar 22, 2023, 06:22 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ernest

4 months ago

A and B are solid, but I’m not sure about C.

upvoted 0 times

...

Gail

4 months ago

Wait, D? I didn't know Google Cloud Armor had access logs!

upvoted 0 times

...

Laticia

4 months ago

C seems a bit overkill for just log inspection.

upvoted 0 times

...

Ira

4 months ago

I disagree, B provides better visibility over all subnets.

upvoted 0 times

...

Chaya

4 months ago

A is the best option for detailed traffic analysis.

upvoted 0 times

...

Ling

5 months ago

Google Cloud Armor access logs seem relevant, but I’m unsure if they provide the level of detail needed for inspecting malicious content in IP packets.

upvoted 0 times

...

Thaddeus

5 months ago

I practiced a question similar to this, and I feel like configuring the Fluentd agent might be more about log management than direct packet inspection.

upvoted 0 times

...

Tish

5 months ago

I remember something about VPC Flow Logs being useful for monitoring traffic, but I can't recall if they actually help with inspecting packet content.

upvoted 0 times

...

Hobert

5 months ago

I think using Packet Mirroring sounds familiar, but I'm not entirely sure if it's the best option for inspecting IP packets specifically.

upvoted 0 times

...

Desiree

5 months ago

Google Cloud Armor access logs seem relevant, but I’m unsure if they provide the level of detail needed for inspecting malicious content in IP packets.

upvoted 0 times

...

Phillip

5 months ago

I practiced a question similar to this, and I feel like configuring the Fluentd agent might be more about log management than direct packet inspection.

upvoted 0 times

...

Madalyn

5 months ago

I remember something about VPC Flow Logs being useful for monitoring traffic, but I can't recall if they actually help with inspecting packet content.

upvoted 0 times

...

Shala

5 months ago

I think using Packet Mirroring sounds familiar, but I'm not entirely sure if it's the best option for inspecting IP packets specifically.

upvoted 0 times

...

Shala

5 months ago

This seems like a tricky one. I'll need to think through the different mediator options carefully.

upvoted 0 times

...

Raina

5 months ago

The RPM Database and RPM Editor seem less relevant to the core functionality of RPM, so I'm going to focus on the other options.

upvoted 0 times

...

Gennie

5 months ago

I feel pretty confident about this one. The auditor should write a finding to encourage a root cause analysis, since the issue was addressed reactively rather than proactively.

upvoted 0 times

...