Google Exam Professional Cloud Security Engineer Topic 4 Question 72 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam

Question #: 72
Topic #: 4

[All Professional Cloud Security Engineer Questions]

A customer implements Cloud Identity-Aware Proxy for their ERP system hosted on Compute Engine. Their security team wants to add a security layer so that the ERP systems only accept traffic from Cloud Identity- Aware Proxy.

What should the customer do to meet these requirements?

AMake sure that the ERP system can validate the JWT assertion in the HTTP requests.

BMake sure that the ERP system can validate the identity headers in the HTTP requests.

CMake sure that the ERP system can validate the x-forwarded-for headers in the HTTP requests.

DMake sure that the ERP system can validate the user's unique identifier headers in the HTTP requests.

Show Suggested Answer

Suggested Answer: D

Cloud Asset Inventory: Using Cloud Asset Inventory allows you to quickly identify all the external assets and resources in your Google Cloud environment. This includes information about your projects, instances, storage buckets, and more. This step is crucial for understanding the scope of your audit. Network Security Scanner: Once you have identified the external assets, you can run a network security scanner to assess the security of these assets. Network security scanners can help identify vulnerabilities and potential security risks quickly.

by Kiley at Feb 08, 2024, 02:14 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Security Engineer Questions as Interactive Web-Based Practice Test or PDF