Topic 1 Question 269
Your organization is using Security Command Center Premium as a central tool to detect and alert on security threats. You also want to alert on suspicious outbound traffic that is targeting domains of known suspicious web services. What should you do?
Create a DNS Server Policy in Cloud DNS and turn on logs. Attach this policy to all Virtual Private Cloud networks with internet connectivity.
Forward all logs to Chronicle Security Information and Event Management. Create an alert for suspicious egress traffic to the internet.
Create a Cloud Intrusion Detection endpoint. Connect this endpoint to all Virtual Private Cloud networks with internet connectivity.
Create an egress firewall policy with Threat Intelligence as the destination. Attach this policy to all Virtual Private Cloud networks with internet connectivity.
ユーザの投票
コメント(9)
Answer D is correct as per Gemini: Subscribe to threat intelligence feeds that provide updated lists of known suspicious domains and IP addresses. Integrate these feeds with your security solutions to identify and block outbound connections to these resources.
👍 3brpjp2024/09/20- 正解だと思う選択肢: B
https://cloud.google.com/chronicle/docs/overview
Option B addresses the alert on suspicious outbound traffic while option D does not.
👍 3BondleB2024/11/03 I´m thinking D
👍 2Pach12112024/09/15
シャッフルモード