GCP Professional Cloud Security Engineer Practice Question
An American public safety agency is moving a records-management workload to Google Cloud. To satisfy CJIS, it must 1) keep all data in U.S. locations, 2) ensure that any Google support access is limited to U.S. citizens who have passed CJIS background checks, and 3) have every new project automatically inherit the same controls. Which approach satisfies these requirements with the least ongoing operational effort?
Block non-U.S. IP addresses with Cloud Armor, use CMEK with U.S.-hosted keys, and purchase a premium support plan that guarantees response from U.S.-based staff.
Deploy the application only in us-central1 and us-east4, enable Access Transparency logs, and place the projects inside a VPC Service Controls perimeter.
Configure an organization policy that restricts resource locations to U.S. regions, enable Access Approval on all projects, and manually verify CJIS eligibility for each Google support request.
Create an Assured Workloads environment with the CJIS compliance regime in a dedicated folder and provision all current and future projects inside that environment.
Assured Workloads lets you create an environment bound to the CJIS compliance regime. When the environment is created inside its own folder, Assured Workloads automatically applies and continuously enforces organization policies that lock data to U.S. regions, limit Google personnel access to CJIS-screened U.S. persons, and restrict service usage. Any project provisioned through the environment inherits those controls without additional manual configuration. The alternative answers rely on individual org-policy settings, network controls, or support plans that do not provide CJIS-specific personnel restrictions or automatic inheritance for future projects, leaving significant manual effort and compliance gaps.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is CJIS compliance and why is it crucial for public safety agencies?
Open an interactive chat with Bash
What is Assured Workloads in Google Cloud?
Open an interactive chat with Bash
How does Assured Workloads ensure compliance inheritance for future projects?
Open an interactive chat with Bash
What are Assured Workloads in Google Cloud?
Open an interactive chat with Bash
What is CJIS compliance, and why is it important for public safety agencies?
Open an interactive chat with Bash
How does Assured Workloads simplify project management for compliance requirements?
Open an interactive chat with Bash
GCP Professional Cloud Security Engineer
Supporting compliance requirements
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .