Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Professional Cloud Security Engineer Exam - Topic 4 Question 78 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam
Question #: 78
Topic #: 4
[All Professional Cloud Security Engineer Questions]

You have been tasked with implementing external web application protection against common web application attacks for a public application on Google Cloud. You want to validate these policy changes before they are enforced. What service should you use?

Show Suggested Answer Hide Answer
Suggested Answer: A, C

https://cloud.google.com/architecture/framework/security/data-residency-sovereignty#manage_your_operational_sovereignty


by Wynell at May 13, 2024, 08:03 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Linwood
6 months ago
Not sure if Cloud Load Balancing is the best choice here.
upvoted 0 times
...
Wenona
6 months ago
Prepopulated VPC firewall rules in monitor mode sounds safer.
upvoted 0 times
...
Mitsue
6 months ago
I’m surprised that VPC Service Controls can be used like that.
upvoted 0 times
...
Patti
7 months ago
I think the GFE protections are enough, though.
upvoted 0 times
...
Levi
7 months ago
Definitely go with Google Cloud Armor's preconfigured rules!
upvoted 0 times
...
Gracia
7 months ago
I practiced a similar question, and I think Cloud Armor is the best option here for testing policies before enforcement.
upvoted 0 times
...
Armando
7 months ago
I feel like the inherent protections of Google Front End could be useful, but I'm not confident if they allow for validation like the others.
upvoted 0 times
...
Myra
7 months ago
I'm not entirely sure, but I remember something about VPC firewall rules being used in monitor mode for validation.
upvoted 0 times
...
Amos
8 months ago
I think Google Cloud Armor's preconfigured rules in preview mode might be the right choice since it allows testing before applying changes.
upvoted 0 times
...
Mari
8 months ago
I'm pretty sure the inherent protections of Google Front End (GFE) are not meant for validating custom web application protection policies, so I'm going to rule that one out.
upvoted 0 times
...
Carmelina
8 months ago
VPC Service Controls in dry run mode could also be a good choice, but I'm not as familiar with that service. I'll need to research it a bit more to be confident in that answer.
upvoted 0 times
...
Kenny
8 months ago
Hmm, the question is asking about validating web application protection, so I'm leaning towards option A. The preconfigured rules in preview mode seem like the most straightforward way to test the changes.
upvoted 0 times
...
Kirk
8 months ago
I'm a bit unsure about this one. Is Cloud Load Balancing firewall rules a valid option as well? I'll need to double-check the details on that.
upvoted 0 times
...
Stephanie
8 months ago
I think Google Cloud Armor's preconfigured rules in preview mode would be the best option here. It allows you to validate the policy changes before enforcing them.
upvoted 0 times
...
Layla
8 months ago
Ah, this is a good one. I remember learning about the Telemetry feature in Prisma Cloud, which provides a graphical view of connections. That seems like the most likely answer here.
upvoted 0 times
...
Annamae
8 months ago
This question seems pretty clear to me. I'll make sure to double-check that the purchase agreement includes all the details specified in the prompt.
upvoted 0 times
...
Sherill
1 year ago
Option A all the way! Google's got our back with those preconfigured rules. It's like having a superhero on the team.
upvoted 0 times
...
Lavelle
1 year ago
Option B is tempting, but I'm a bit worried about the 'monitor mode' part. Seems like a risky move for a public application.
upvoted 0 times
Elza
11 months ago
C) The inherent protections of Google Front End (GFE)
upvoted 0 times
...
Franchesca
11 months ago
A) That's a good point. It's better to test with a more secure option like Google Cloud Armor.
upvoted 0 times
...
Aleta
11 months ago
B) I see your concern, but Google Cloud Armor's preconfigured rules in preview mode would be a safer bet for testing.
upvoted 0 times
...
Craig
12 months ago
A) Google Cloud Armor's preconfigured rules in preview mode
upvoted 0 times
...
...
Sharen
1 year ago
Option D, Cloud Load Balancing firewall rules, could be a solid choice. Gotta love that built-in protection!
upvoted 0 times
...
Ernie
1 year ago
Hmm, I don't know, Option C sounds a bit too good to be true. The inherent protections of GFE might not be enough for our needs.
upvoted 0 times
Jeanice
11 months ago
User 3: Yeah, let's not take any chances with just relying on the inherent protections of Google Front End.
upvoted 0 times
...
Sharen
12 months ago
User 2: I agree, it's better to validate the policy changes before enforcing them.
upvoted 0 times
...
Nada
12 months ago
User 1: I think we should go with option A, Google Cloud Armor's preconfigured rules in preview mode.
upvoted 0 times
...
...
Rikki
1 year ago
I'm leaning towards Option E. VPC Service Controls in dry run mode could give us a good idea of how the policies will work without enforcing them yet.
upvoted 0 times
Malcom
1 year ago
User 2: I agree. It's always better to validate changes before enforcing them.
upvoted 0 times
...
Jaime
1 year ago
User 1: I think Option E is a good choice. It allows us to test the policies without actually implementing them.
upvoted 0 times
...
...
Kaycee
1 year ago
I prefer using VPC Service Controls in dry run mode. It allows us to test the changes without affecting the production environment.
upvoted 0 times
...
Beatriz
1 year ago
Option A seems like the way to go. I've heard Google Cloud Armor's preconfigured rules are pretty robust.
upvoted 0 times
Miesha
1 year ago
User 4: Sounds good to me.
upvoted 0 times
...
Evangelina
1 year ago
User 3: Let's go with option A then.
upvoted 0 times
...
Lottie
1 year ago
User 2: Yeah, I agree. I've heard they are pretty robust.
upvoted 0 times
...
Nada
1 year ago
User 1: I think we should use Google Cloud Armor's preconfigured rules in preview mode.
upvoted 0 times
...
...
Glory
1 year ago
I agree with Jacob. It's important to validate the policy changes before enforcing them.
upvoted 0 times
...
Jacob
1 year ago
I think we should use Google Cloud Armor's preconfigured rules in preview mode.
upvoted 0 times
...

Save Cancel