Google Cloud Professional Cloud Security Engineer — Question 132

Your company uses Google Cloud and has publicly exposed network assets. You want to discover the assets and perform a security audit on these assets by using a software tool in the least amount of time.

What should you do?

Answer options

• A. Run a platform security scanner on all instances in the organization.
• B. Identify all external assets by using Cloud Asset Inventory, and then run a network security scanner against them.
• C. Contact a Google approved security vendor to perform the audit.
• D. Notify Google about the pending audit, and wait for confirmation before performing the scan.

Correct answer: B

Explanation

The correct answer is B because using Cloud Asset Inventory allows you to efficiently identify all external assets before running a network security scan on them, ensuring a thorough and quick audit. Option A is less effective as it scans all instances without prioritizing external assets, while option C could take longer due to vendor engagement and option D unnecessarily delays the audit process by waiting for Google’s confirmation.