Topic 1 Question 182
For compliance reporting purposes, the internal audit department needs you to provide the list of virtual machines (VMs) that have critical operating system (OS) security updates available, but not installed. You must provide this list every six months, and you want to perform this task quickly.
What should you do?
Run a Security Command Center security scan on all VMs to extract a list of VMs with critical OS vulnerabilities every six months.
Run a gcloud CLI command from the Command Line Interface (CLI) to extract the VM's OS version information every six months.
Ensure that the Cloud Logging agent is installed on all VMs, and extract the OS last update log date every six months.
Ensure the OS Config agent is installed on all VMs and extract the patch status dashboard every six months.
ユーザの投票
コメント(8)
- 正解だと思う選択肢: D
D: https://cloud.google.com/compute/docs/os-patch-management#:~:text=A%20patch%20deployment%20is%20initiated,target%20VMs%20to%20start%20patching. Cannot be A, as VM Manager patch compliance feature is in preview for in SCC. https://cloud.google.com/security-command-center/docs/concepts-vulnerabilities-findings
👍 2RuchiMishra2023/08/15 A Security command center is integrated with vm manager
👍 1K1SMM2023/08/02C- Cloud Logging Agent
👍 1Sanjana20202023/08/02
シャッフルモード