GCP Professional Cloud Security Engineer Practice Question
Your healthcare organization is building a regulated analytics platform on Compute Engine. To satisfy auditors, you need to classify each security control as managed by Google or by your team under the shared responsibility model. Which of the following controls is entirely Google's responsibility when you run virtual machines on Google Cloud?
Applying critical security patches to the hypervisor hosts that run your VM instances
Rotating and managing the keys for your service accounts used by application containers
Creating and maintaining VPC firewall rules that restrict inbound traffic to the application subnet
Enabling OS Login and disabling local SSH keys on each Compute Engine VM
Google is accountable for security of the cloud, which includes the physical facilities, hardware, networking, and the virtualization layer that hosts customer workloads. Patching vulnerabilities on the hypervisor layer is therefore performed by Google and cannot be delegated to customers. In contrast, customers must manage and rotate any service-account credentials they create, author and maintain VPC firewall rules that govern their traffic flows, and harden their guest operating systems-for example by enforcing OS Login and disabling unmanaged SSH keys-because these activities fall under security in the cloud.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the shared responsibility model in cloud security?
Open an interactive chat with Bash
Why does Google handle hypervisor security patches?
Open an interactive chat with Bash
What security tasks are customers responsible for in Google Cloud?
Open an interactive chat with Bash
What is the shared responsibility model in Google Cloud?
Open an interactive chat with Bash
What is the hypervisor layer in virtualized environments?
Open an interactive chat with Bash
Why is OS Login and managing SSH keys considered a customer responsibility?
Open an interactive chat with Bash
GCP Professional Cloud Security Engineer
Supporting compliance requirements
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .