Topic 1 Question 321
2 つ選択Your organization strives to be a market leader in software innovation. You provided a large number of Google Cloud environments so developers can test the integration of Gemini in Vertex AI into their existing applications or create new projects. Your organization has 200 developers and a five-person security team. You must prevent and detect proper security policies across the Google Cloud environments. What should you do?
Apply organization policy constraints. Detect and monitor drifts by using Security Health Analytics.
Publish internal policies and clear guidelines to securely develop applications.
Use Cloud Logging to create log filters to detect misconfigurations. Trigger Cloud Run functions to remediate misconfigurations.
Apply a predefined AI-recommended security posture template for Gemini in Vertex AI in Security Command Center Enterprise or Premium tiers.
Implement the least privileged access Identity and Access Management roles to prevent misconfigurations.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: AD
Answer A D
👍 1abdelrahman892024/10/24 - 正解だと思う�選択肢: AE
A. Apply organization policy constraints. Detect and monitor drifts by using Security Health Analytics. Organization Policies:
Enforcing organization policies (e.g., constraints on resource locations, API access, or service usage) helps standardize security practices across all environments. Developers can create and test environments without bypassing critical security controls. Security Health Analytics (SHA):
SHA, available in Security Command Center Premium, detects and alerts on violations of security best practices and misconfigurations, such as overly permissive roles or public resource exposure.
E. Implement the least privileged access Identity and Access Management roles to prevent misconfigurations. Least Privileged Access:
Assigning IAM roles based on the principle of least privilege prevents users from making changes outside their scope of work, reducing misconfiguration risks.
👍 1BPzen2024/11/28 - 正解だと思う選択肢: AD
Specifically mentions gemini/vertex, so definitely D.
https://cloud.google.com/security-command-center/docs/security-posture-essentials-secure-ai-template
A & E are both good, but the requirement is prevent and detect, which better lines to A.
👍 1nah992024/11/29
シャッフルモード