GCP Professional Cloud Security Engineer Practice Question
Your financial services company operates dozens of GCP projects. You have enabled Security Command Center Premium at the organization level and turned on Cloud IDS, Security Health Analytics, and Container Threat Detection. The security operations team must receive an incident ticket as soon as a new HIGH or CRITICAL finding appears, without building custom polling logic or managing additional infrastructure. Which solution satisfies these requirements with the least operational overhead?
Set up an organization-level aggregated log sink to BigQuery, then schedule a Cloud Scheduler job every hour to query for new HIGH or CRITICAL findings and create tickets through Cloud Run.
Enable Security Command Center findings notifications to publish to a dedicated Pub/Sub topic, and deploy a Cloud Function triggered by that topic to call the incident-management system's API.
Use the built-in Jira integration in Security Command Center and map HIGH and CRITICAL severities to automatically create incident tickets.
Create a log-based metric on Security Command Center logs, configure a Cloud Monitoring alert that publishes to Pub/Sub, and trigger a Cloud Function from that topic to open a ticket.
Security Command Center (SCC) can natively publish every new or updated finding to Cloud Pub/Sub through the SCC notifications service. By enabling notifications and pointing them to a dedicated Pub/Sub topic, findings-filtered to only HIGH or CRITICAL severities-are streamed in real time. Cloud Functions offers a fully managed, event-driven execution environment that can subscribe to the same topic and invoke the incident-management system's API to open a ticket, eliminating the need to maintain servers or periodic polling logic. Creating log-based metrics with alerting, building scheduled queries in BigQuery, or relying on a non-existent built-in Jira integration either introduce additional operational overhead, delay detection, or are simply unsupported. Therefore, using SCC notifications to Pub/Sub combined with a Pub/Sub-triggered Cloud Function best meets the stated requirements with minimal operational effort.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Security Command Center in GCP?
Open an interactive chat with Bash
How does Pub/Sub integrate with Security Command Center findings?
Open an interactive chat with Bash
What is a Cloud Function, and why is it suitable for this solution?
Open an interactive chat with Bash
What is Security Command Center (SCC) in GCP?
Open an interactive chat with Bash
How do Pub/Sub notifications work with Security Command Center?
Open an interactive chat with Bash
What is a Cloud Function, and why is it useful for this solution?
Open an interactive chat with Bash
GCP Professional Cloud Security Engineer
Managing operations
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .