Google Cloud Professional Cloud Security Engineer — Question 176

You work for a financial organization in a highly regulated industry that is subject to active regulatory compliance. To meet compliance requirements, you need to continuously maintain a specific set of configurations, data residency, organizational policies, and personnel data access controls. What should you do?

Answer options

• A. Apply an organizational policy constraint at the organization level to limit the location of new resource creation.
• B. Create an Assured Workloads folder for your required compliance program to apply defined controls and requirements.
• C. Go to the Compliance page in Security Command Center. View the report for your status against the required compliance standard. Triage violations to maintain compliance on a regular basis.
• D. Create a posture.yaml file with the required security compliance posture. Apply the posture with the gcloud scc postures create POSTURE_NAME --posture-from-file=posture.yaml command in Security Command Center Premium.

Correct answer: B

Explanation

The correct answer is B because creating an Assured Workloads folder allows you to implement specific controls and requirements tailored to your compliance needs. Option A is incorrect as it only limits resource creation location but does not enforce all compliance aspects. Option C focuses on monitoring compliance rather than actively maintaining it, and option D involves creating a posture but is less comprehensive in addressing ongoing compliance needs compared to option B.