GCP Professional Cloud Security Engineer Practice Question
A financial services company is re-hosting a legacy analytics workload on Google Cloud. Regulations now require the client data processed by the application to remain encrypted even while it is resident in memory. The development team cannot modify the application code or runtime. Which Google Cloud capability should you enable to meet the new requirement with the least effort?
Place the project inside a VPC Service Controls perimeter to block data egress.
Enable Shielded VM features such as Secure Boot and Integrity Monitoring.
Run the workload on Confidential VMs in the same machine type.
Store the application's encryption keys in Cloud HSM for hardware protection.
Confidential VMs keep guest memory encrypted using hardware features such as AMD SEV or Intel TDX, protecting data while it is in use without requiring any application changes. Shielded VMs add secure boot and integrity monitoring but do not encrypt memory. Cloud HSM secures cryptographic keys, not workload memory, and VPC Service Controls restrict data movement across network boundaries rather than protecting data in use.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Confidential VMs?
Open an interactive chat with Bash
How does AMD SEV or Intel TDX work to encrypt memory?
Open an interactive chat with Bash
What is the difference between Shielded VMs and Confidential VMs?
Open an interactive chat with Bash
What are Confidential VMs in Google Cloud?
Open an interactive chat with Bash
What is AMD SEV and Intel TDX? How do they enable memory encryption?
Open an interactive chat with Bash
How do Shielded VMs differ from Confidential VMs?
Open an interactive chat with Bash
GCP Professional Cloud Security Engineer
Ensuring data protection
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .