1. Home
  2. Discussions
  3. Google
  4. Google Cloud Certified
  5. Professional-Cloud-Security-Engineer Discussions
  6. Professional-Cloud-Security-Engineer Exam Topic 3 Question 22 Discussion

Google Cloud Certified - Professional Cloud Security Engineer Professional-Cloud-Security-Engineer Question # 22 Topic 3 Discussion

 Google Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Google Cloud Certified - Professional Cloud Security Engineer Professional-Cloud-Security-Engineer Question # 22 Topic 3 Discussion

Professional-Cloud-Security-Engineer Exam Topic 3 Question 22 Discussion:
Question #: 22
Topic #: 3

You need to enforce a security policy in your Google Cloud organization that prevents users from exposing objects in their buckets externally. There are currently no buckets in your organization. Which solution should you implement proactively to achieve this goal with the least operational overhead?
A.

Create an hourly cron job to run a Cloud Function that finds public buckets and makes them private.

B.

Enable the constraints/storage.publicAccessPrevention constraint at the organization level.

C.

Enable the constraints/storage.uniformBucketLevelAccess constraint at the organization level.

D.

Create a VPC Service Controls perimeter that protects the storage.googleapis.com service in your projects that contains buckets. Add any new project that contains a bucket to the perimeter.

Get Premium Professional-Cloud-Security-Engineer Questions
Actual exam question for Google Professional-Cloud-Security-Engineer exam by Phoenix5706 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next