Topic 1 Question 274
Your EU-based organization stores both Personally Identifiable Information (PII) and non-PII data in Cloud Storage buckets across multiple Google Cloud regions. EU data privacy laws require that the PII data must not be stored outside of the EU. To help meet this compliance requirement, you want to detect if Cloud Storage buckets outside of the EU contain healthcare data. What should you do?
Create a Sensitive Data Protection job. Specify the infoType of data to be detected and run the job across all Google Cloud Storage buckets.
Create a log sink with a filter on resourceLocation.currentLocations. Trigger an alert if a log message appears with a non- EUcountry.
Activate Security Command Center Premium. Use compliance monitoring to detect resources that do not follow the applicable healthcare regulation.
Enforce the gcp.resourceLocations organization policy and add "EU" in a custom rule that only applies on resources with the tag "healthcare".
ユーザの投票
コメント(4)
- 正解だと思う選択肢: A
I think it's A.
👍 2yokoyan2024/09/05 - 正解だと思う選択肢: A
Specifying the info Type of data to be detected allows to find storage buckets outside the EU that contain healthcare data.
👍 1BondleB2024/11/05 - 正解だと思う選択肢: A
Definitely A
👍 1MoAk2024/11/27
シャッフルモード