🔥 40% Off Crucial Exams Memberships — Deal ends today!

8 minutes, 59 seconds remaining!
Crucial Exams

GCP Professional Cloud Architect Practice Question

A publicly traded company must retain Google Cloud Admin Activity audit logs for seven years to satisfy regional financial regulations. The compliance team also requires the logs to be immutable once written so that even project owners cannot delete or overwrite them. As the Cloud Architect, you need to propose a solution that satisfies the requirements while adding the least operational overhead.

Which design should you recommend?

  • Export the logs to Pub/Sub and invoke a Cloud Function that writes them to Firestore collections configured with a seven-year TTL.

  • Retain the logs in their default Cloud Logging bucket and set the bucket's retention period to seven years.

  • Route the logs to a BigQuery dataset with a seven-year table expiration and grant only BigQuery Data Viewer roles to administrators.

  • Create a log sink that routes Admin Activity logs to a Cloud Storage bucket in a dedicated compliance project, enable a seven-year retention policy on the bucket, and lock the policy with Bucket Lock.

GCP Professional Cloud Architect
Designing for security and compliance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot