Google Professional Data Engineer Exam - Topic 4 Question 56 Discussion

Actual exam question for Google's Professional Data Engineer exam

Question #: 56
Topic #: 4

[All Professional Data Engineer Questions]

Government regulations in the banking industry mandate the protection of client's personally identifiable information (PII). Your company requires PII to be access controlled encrypted and compliant with major data protection standards In addition to using Cloud Data Loss Prevention (Cloud DIP) you want to follow Google-recommended practices and use service accounts to control access to PII. What should you do?

AAssign the required identity and Access Management (IAM) roles to every employee, and create a single service account to access protect resources

BUse one service account to access a Cloud SQL database and use separate service accounts for each human user

CUse Cloud Storage to comply with major data protection standards. Use one service account shared by all users

DUse Cloud Storage to comply with major data protection standards. Use multiple service accounts attached to IAM groups to grant the appropriate access to each group

Show Suggested Answer

Suggested Answer: D

by Mirta at Jul 29, 2022, 05:25 PM

Limited Time Offer

25%

Off

Get Premium Professional Data Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Elenor

4 months ago

D is definitely the way to go for compliance and security.

upvoted 0 times

...

Marisha

4 months ago

A single service account for everyone? That sounds risky!

upvoted 0 times

...

Veda

4 months ago

Wow, I didn't realize how important service accounts were for PII!

upvoted 0 times

...

Sabrina

4 months ago

I disagree, I think B is more secure with separate accounts.

upvoted 0 times

...

France

4 months ago

Option D seems like the best choice for access control.

upvoted 0 times

...

Ashton

5 months ago

I recall a similar question where using separate service accounts was emphasized. I think it helps in tracking access better.

upvoted 0 times

...

Dorothy

5 months ago

I’m a bit confused about whether sharing a service account is compliant with regulations. I feel like that could be a security risk.

upvoted 0 times

...

Harley

5 months ago

I think option D sounds familiar; it aligns with what we practiced about using IAM groups for better access control.

upvoted 0 times

...

Kristel

5 months ago

I remember we discussed the importance of using multiple service accounts to minimize risk, but I'm not sure if that's the best approach here.

upvoted 0 times

...

Barabara

5 months ago

Hmm, I'm a little unsure about this one. I'm trying to think through the different data collection methods and which one would work best for this scenario. I'll have to give it some more thought.

upvoted 0 times

...

Arlene

5 months ago

Okay, I think I know the answer to this. It's got to be an organization - they use functions and their size and complexity can vary.

upvoted 0 times

...

Chantell

5 months ago

Hmm, I'm a bit unsure about this one. I know service changes are important, but I'm not totally clear on the specific types of events or activities that would require changes to the Service Management plan. I'll have to think this through carefully.

upvoted 0 times

...

Lon

5 months ago

This looks like a straightforward database question. I'll need to think through the implications of removing a tuple from the Activity Relation table.

upvoted 0 times

...